Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-10877 (GCVE-0-2018-10877)
Vulnerability from cvelistv5 – Published: 2018-07-18 15:00 – Updated: 2024-08-05 07:46
VLAI
EPSS
Summary
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
Severity
7.3 (High)
CWE
Assigner
References
12 references
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2… | x_refsource_CONFIRM |
| https://usn.ubuntu.com/3753-2/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3754-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3871-5/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3871-4/ | vendor-advisoryx_refsource_UBUNTU |
| https://lists.debian.org/debian-lts-announce/2018… | mailing-listx_refsource_MLIST |
| https://access.redhat.com/errata/RHSA-2018:2948 | vendor-advisoryx_refsource_REDHAT |
| https://usn.ubuntu.com/3871-1/ | vendor-advisoryx_refsource_UBUNTU |
| http://www.securityfocus.com/bid/106503 | vdb-entryx_refsource_BID |
| https://usn.ubuntu.com/3753-1/ | vendor-advisoryx_refsource_UBUNTU |
| https://usn.ubuntu.com/3871-3/ | vendor-advisoryx_refsource_UBUNTU |
| http://www.securityfocus.com/bid/104878 | vdb-entryx_refsource_BID |
Date Public
2018-07-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T07:46:47.469Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"name": "USN-3753-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"name": "USN-3754-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"name": "USN-3871-5",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"name": "USN-3871-4",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"name": "[debian-lts-announce] 20180718 [SECURITY] [DLA 1423-1] linux-4.9 new package",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"name": "RHSA-2018:2948",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"name": "USN-3871-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"name": "106503",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/106503"
},
{
"name": "USN-3753-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"name": "USN-3871-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"name": "104878",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/104878"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "kernel",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-07-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-125",
"description": "CWE-125",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-04-01T18:06:04.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"name": "USN-3753-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"name": "USN-3754-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"name": "USN-3871-5",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"name": "USN-3871-4",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"name": "[debian-lts-announce] 20180718 [SECURITY] [DLA 1423-1] linux-4.9 new package",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"name": "RHSA-2018:2948",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"name": "USN-3871-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"name": "106503",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/106503"
},
{
"name": "USN-3753-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"name": "USN-3871-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"name": "104878",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/104878"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2018-10877",
"datePublished": "2018-07-18T15:00:00.000Z",
"dateReserved": "2018-05-09T00:00:00.000Z",
"dateUpdated": "2024-08-05T07:46:47.469Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-10877",
"date": "2026-05-27",
"epss": "0.0024",
"percentile": "0.47332"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-10877\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-07-18T15:29:00.267\",\"lastModified\":\"2024-11-21T03:42:12.173\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.\"},{\"lang\":\"es\",\"value\":\"El sistema de archivos ext4 del kernel de Linux es vulnerable a un acceso fuera de l\u00edmites en la funci\u00f3n ext4_ext_drop_refs() al operar en una imagen manipulada del sistema de archivos ext4.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.3,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.6,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A63F7D1D-EB47-48AE-B89E-E84A63579FA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52B2554F-418F-46DB-8AC3-7CE80220A3E6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/104878\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/106503\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2948\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3753-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3753-2/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3754-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-3/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-4/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-5/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/104878\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/106503\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2948\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3753-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3753-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3754-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3871-5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2019-AVI-035
Vulnerability from certfr_avis - Published: 2019-01-29 - Updated: 2019-01-29
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneReferences
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 18.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-10883",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10883"
},
{
"name": "CVE-2018-16882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16882"
},
{
"name": "CVE-2018-19407",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19407"
},
{
"name": "CVE-2018-10879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10879"
},
{
"name": "CVE-2018-10880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10880"
},
{
"name": "CVE-2018-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10878"
},
{
"name": "CVE-2018-14625",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14625"
},
{
"name": "CVE-2018-18281",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18281"
},
{
"name": "CVE-2018-17972",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17972"
},
{
"name": "CVE-2018-19854",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19854"
},
{
"name": "CVE-2018-10877",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10877"
},
{
"name": "CVE-2018-9516",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9516"
},
{
"name": "CVE-2018-10882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10882"
},
{
"name": "CVE-2018-10876",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10876"
}
],
"initial_release_date": "2019-01-29T00:00:00",
"last_revision_date": "2019-01-29T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-035",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-01-29T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire, un d\u00e9ni de service et une atteinte \u00e0\nla confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3872-1 du 29 janvier 2019",
"url": "https://usn.ubuntu.com/3872-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3871-1 du 29 janvier 2019",
"url": "https://usn.ubuntu.com/3871-1/"
}
]
}
CERTFR-2019-AVI-041
Vulnerability from certfr_avis - Published: 2019-02-01 - Updated: 2019-02-01
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu . Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneReferences
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 18.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-10883",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10883"
},
{
"name": "CVE-2018-16882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16882"
},
{
"name": "CVE-2018-19407",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19407"
},
{
"name": "CVE-2018-10879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10879"
},
{
"name": "CVE-2018-10880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10880"
},
{
"name": "CVE-2018-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10878"
},
{
"name": "CVE-2018-14625",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14625"
},
{
"name": "CVE-2018-18281",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18281"
},
{
"name": "CVE-2018-17972",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17972"
},
{
"name": "CVE-2018-10877",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10877"
},
{
"name": "CVE-2018-9516",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9516"
},
{
"name": "CVE-2018-10882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10882"
},
{
"name": "CVE-2018-10876",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10876"
}
],
"initial_release_date": "2019-02-01T00:00:00",
"last_revision_date": "2019-02-01T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-041",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-02-01T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu . Certaines d\u0027entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de service et une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3871-2 du 31 janvier 2019",
"url": "https://usn.ubuntu.com/3871-2/"
}
]
}
CERTFR-2019-AVI-044
Vulnerability from certfr_avis - Published: 2019-02-05 - Updated: 2019-02-11
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.10",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 12.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-10883",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10883"
},
{
"name": "CVE-2018-16882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16882"
},
{
"name": "CVE-2018-19407",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19407"
},
{
"name": "CVE-2018-9568",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9568"
},
{
"name": "CVE-2018-10879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10879"
},
{
"name": "CVE-2018-10880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10880"
},
{
"name": "CVE-2018-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10878"
},
{
"name": "CVE-2018-14625",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14625"
},
{
"name": "CVE-2018-18281",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18281"
},
{
"name": "CVE-2018-17972",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17972"
},
{
"name": "CVE-2018-16862",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16862"
},
{
"name": "CVE-2018-20169",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20169"
},
{
"name": "CVE-2018-1066",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1066"
},
{
"name": "CVE-2018-19854",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19854"
},
{
"name": "CVE-2018-10877",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10877"
},
{
"name": "CVE-2018-9516",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9516"
},
{
"name": "CVE-2018-10882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10882"
},
{
"name": "CVE-2018-10876",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10876"
},
{
"name": "CVE-2018-19824",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19824"
}
],
"initial_release_date": "2019-02-05T00:00:00",
"last_revision_date": "2019-02-11T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-044",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-02-05T00:00:00.000000"
},
{
"description": "Ajout des bulletins concernant le noyau Azure",
"revision_date": "2019-02-08T00:00:00.000000"
},
{
"description": "Ajout du bulletin de s\u00e9curit\u00e9 Ubuntu USN-3878-3 du 8 f\u00e9vrier 2019",
"revision_date": "2019-02-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux\nd\u0027Ubuntu. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire, un d\u00e9ni de service et une atteinte \u00e0\nla confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3879-1 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3879-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3871-3 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3878-1 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3878-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3878-4 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3878-4/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3871-5 du 7 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3880-2 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3880-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3878-2 du 7 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3878-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3880-1 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3880-1/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3879-2 du 4 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3879-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3878-3 du 8 f\u00e9vrier 2019",
"url": "https://usn.ubuntu.com/3878-3/"
}
]
}
CERTFR-2019-AVI-188
Vulnerability from certfr_avis - Published: 2019-04-29 - Updated: 2019-04-29
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, un déni de service et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP 12-SP1 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Server for SAP 12-SP1",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-16658",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16658"
},
{
"name": "CVE-2018-10883",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10883"
},
{
"name": "CVE-2018-10902",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10902"
},
{
"name": "CVE-2018-14634",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14634"
},
{
"name": "CVE-2018-10879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10879"
},
{
"name": "CVE-2018-10880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10880"
},
{
"name": "CVE-2018-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10878"
},
{
"name": "CVE-2018-6554",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6554"
},
{
"name": "CVE-2018-13093",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13093"
},
{
"name": "CVE-2018-10881",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10881"
},
{
"name": "CVE-2018-12896",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12896"
},
{
"name": "CVE-2018-6555",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6555"
},
{
"name": "CVE-2018-14617",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14617"
},
{
"name": "CVE-2018-10877",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10877"
},
{
"name": "CVE-2018-10882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10882"
},
{
"name": "CVE-2018-10876",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10876"
},
{
"name": "CVE-2018-10940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10940"
},
{
"name": "CVE-2018-5383",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5383"
},
{
"name": "CVE-2018-10853",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10853"
},
{
"name": "CVE-2018-16276",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16276"
}
],
"initial_release_date": "2019-04-29T00:00:00",
"last_revision_date": "2019-04-29T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-188",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-04-29T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nSUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, un d\u00e9ni de service et\nune atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20190427-2 du 27 avril 2019",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190427-2/"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20182908-2 du 27 avril 2019",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20182908-2/"
}
]
}
CNVD-2018-24381
Vulnerability from cnvd - Published: 2018-11-30
VLAI
Title
Linux kernel越界访问漏洞
Description
Linux kernel是美国Linux基金会发布的操作系统Linux所使用的内核。ext4 filesystem是其中的一套ext4文件系统组件。
Linux kernel ext4文件系统中的‘ext4_ext_drop_refs()’函数存在安全漏洞。攻击者可借助特制的ext4文件系统镜像利用该漏洞提升权限或造成拒绝服务(越界访问和崩溃)。
Severity
中
Patch Name
Linux kernel越界访问漏洞的补丁
Patch Description
Linux kernel是美国Linux基金会发布的操作系统Linux所使用的内核。ext4 filesystem是其中的一套ext4文件系统组件。
Linux kernel ext4文件系统中的‘ext4_ext_drop_refs()’函数存在安全漏洞。攻击者可借助特制的ext4文件系统镜像利用该漏洞提升权限或造成拒绝服务(越界访问和崩溃)。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bc890a60247171294acc0bd67d211fa4b88d40ba
Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-10877
Impacted products
| Name | Linux Kernel |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-10877"
}
},
"description": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002ext4 filesystem\u662f\u5176\u4e2d\u7684\u4e00\u5957ext4\u6587\u4ef6\u7cfb\u7edf\u7ec4\u4ef6\u3002\n\nLinux kernel ext4\u6587\u4ef6\u7cfb\u7edf\u4e2d\u7684\u2018ext4_ext_drop_refs()\u2019\u51fd\u6570\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684ext4\u6587\u4ef6\u7cfb\u7edf\u955c\u50cf\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u754c\u8bbf\u95ee\u548c\u5d29\u6e83\uff09\u3002",
"discovererName": "unknown",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bc890a60247171294acc0bd67d211fa4b88d40ba",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-24381",
"openTime": "2018-11-30",
"patchDescription": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002ext4 filesystem\u662f\u5176\u4e2d\u7684\u4e00\u5957ext4\u6587\u4ef6\u7cfb\u7edf\u7ec4\u4ef6\u3002\r\n\r\nLinux kernel ext4\u6587\u4ef6\u7cfb\u7edf\u4e2d\u7684\u2018ext4_ext_drop_refs()\u2019\u51fd\u6570\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684ext4\u6587\u4ef6\u7cfb\u7edf\u955c\u50cf\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8d8a\u754c\u8bbf\u95ee\u548c\u5d29\u6e83\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Linux kernel\u8d8a\u754c\u8bbf\u95ee\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Linux Kernel"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-10877",
"serverity": "\u4e2d",
"submitTime": "2018-07-19",
"title": "Linux kernel\u8d8a\u754c\u8bbf\u95ee\u6f0f\u6d1e"
}
FKIE_CVE-2018-10877
Vulnerability from fkie_nvd - Published: 2018-07-18 15:29 - Updated: 2024-11-21 03:42
Severity
7.3 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
6.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
6.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Summary
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| linux | linux_kernel | 4.16 | |
| linux | linux_kernel | 4.17 | |
| debian | debian_linux | 8.0 | |
| redhat | enterprise_linux | 7.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "A63F7D1D-EB47-48AE-B89E-E84A63579FA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "52B2554F-418F-46DB-8AC3-7CE80220A3E6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image."
},
{
"lang": "es",
"value": "El sistema de archivos ext4 del kernel de Linux es vulnerable a un acceso fuera de l\u00edmites en la funci\u00f3n ext4_ext_drop_refs() al operar en una imagen manipulada del sistema de archivos ext4."
}
],
"id": "CVE-2018-10877",
"lastModified": "2024-11-21T03:42:12.173",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.3,
"impactScore": 5.9,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 0.6,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-07-18T15:29:00.267",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/104878"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/106503"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Patch",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/104878"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/106503"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-5/"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
GHSA-4HQ8-F3MJ-M9WC
Vulnerability from github – Published: 2022-05-14 01:14 – Updated: 2022-05-14 01:14
VLAI
Details
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
Severity
6.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2018-10877"
],
"database_specific": {
"cwe_ids": [
"CWE-125"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-07-18T15:29:00Z",
"severity": "MODERATE"
},
"details": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.",
"id": "GHSA-4hq8-f3mj-m9wc",
"modified": "2022-05-14T01:14:26Z",
"published": "2022-05-14T01:14:26Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10877"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2018-10877"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596795"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3753-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3753-2"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3754-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3871-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3871-3"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3871-4"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3871-5"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/104878"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/106503"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-10877
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-10877",
"description": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.",
"id": "GSD-2018-10877",
"references": [
"https://www.suse.com/security/cve/CVE-2018-10877.html",
"https://access.redhat.com/errata/RHSA-2018:2948",
"https://ubuntu.com/security/CVE-2018-10877",
"https://advisories.mageia.org/CVE-2018-10877.html",
"https://linux.oracle.com/cve/CVE-2018-10877.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-10877"
],
"details": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.",
"id": "GSD-2018-10877",
"modified": "2023-12-13T01:22:41.381989Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-10877",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "kernel",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "[UNKNOWN]"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-125",
"lang": "eng",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://usn.ubuntu.com/3754-1/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"name": "http://www.securityfocus.com/bid/106503",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/106503"
},
{
"name": "https://access.redhat.com/errata/RHSA-2018:2948",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"name": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html",
"refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"name": "https://usn.ubuntu.com/3871-1/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"name": "https://usn.ubuntu.com/3871-3/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"name": "https://usn.ubuntu.com/3871-4/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"name": "https://usn.ubuntu.com/3871-5/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"name": "https://usn.ubuntu.com/3753-1/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"name": "https://usn.ubuntu.com/3753-2/",
"refsource": "MISC",
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"name": "http://www.securityfocus.com/bid/104878",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/104878"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:4.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-10877"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Patch",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877"
},
{
"name": "[debian-lts-announce] 20180718 [SECURITY] [DLA 1423-1] linux-4.9 new package",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
},
{
"name": "USN-3754-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3754-1/"
},
{
"name": "USN-3753-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-2/"
},
{
"name": "USN-3753-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3753-1/"
},
{
"name": "RHSA-2018:2948",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"name": "106503",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/106503"
},
{
"name": "USN-3871-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-1/"
},
{
"name": "USN-3871-4",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-4/"
},
{
"name": "USN-3871-3",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-3/"
},
{
"name": "USN-3871-5",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3871-5/"
},
{
"name": "104878",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/104878"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 0.6,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-02-13T04:51Z",
"publishedDate": "2018-07-18T15:29Z"
}
}
}
RHSA-2018:2948
Vulnerability from csaf_redhat - Published: 2018-10-30 12:05 - Updated: 2026-05-13 01:18Summary
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639, aarch64)
* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)
* A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system. (CVE-2018-5391)
Space precludes documenting all of the security fixes in this advisory. See the descriptions of the remaining security fixes in the related Knowledge Article:
https://access.redhat.com/articles/3658021
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639; Juha-Matti Tilli (Aalto University - Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390 and CVE-2018-5391; Qualys Research Labs for reporting CVE-2018-1120; David Rientjes (Google) for reporting CVE-2018-1000200; and Wen Xu for reporting CVE-2018-1092, CVE-2018-1094, and CVE-2018-1095. The CVE-2018-14619 issue was discovered by Florian Weimer (Red Hat) and Ondrej Mosnacek (Red Hat).
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A bug in the 32-bit compatibility layer of the ioctl handling code of the v4l2 video driver in the Linux kernel has been found. A memory protection mechanism ensuring that user-provided buffers always point to a userspace memory were disabled, allowing destination address to be in a kernel space. This flaw could be exploited by an attacker to overwrite a kernel memory from an unprivileged userspace process, leading to privilege escalation.
7.8 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
The dvb frontend management subsystem in the Linux kernel contains a use-after-free which can allow a malicious user to write to memory that may be assigned to another kernel structure. This could create memory corruption, panic, or possibly other side affects.
4.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The Salsa20 encryption algorithm in the Linux kernel, before 4.14.8, does not correctly handle zero-length inputs. This allows a local attacker the ability to use the AF_ALG-based skcipher interface to cause a denial of service (uninitialized-memory free and kernel crash) or have an unspecified other impact by executing a crafted sequence of system calls that use the blkcipher_walk API. Both the generic implementation (crypto/salsa20_generic.c) and x86 implementation (arch/x86/crypto/salsa20_glue.c) of Salsa20 are vulnerable.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HMAC implementation (crypto/hmac.c) in the Linux kernel, before 4.14.8, does not validate that the underlying cryptographic hash algorithm is unkeyed. This allows a local attacker, able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3), to cause a kernel stack buffer overflow by executing a crafted sequence of system calls that encounter a missing SHA-3 initialization.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
crypto/pcrypt.c in the Linux kernel, before 4.14.13, mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The madvise_willneed function in the Linux kernel allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel doesn't properly validate the sigevent->sigev_notify field, which leads to out-of-bounds access in the show_timer function.
7.1 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the netfilter/iptables subsystem. A user with the netfilter modification capabilities could insert a rule which could panic the system.
5.9 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.
8.1 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/mballoc.c:ext4_process_freed_data() function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted ext4 image to cause a kernel panic.
4.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/xattr.c:ext4_xattr_inode_hash() function. An attacker could trick a legitimate user or a privileged attacker could exploit this to cause a NULL pointer dereference with a crafted ext4 image.
4.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
The Linux kernel is vulnerable to an out-of-bound access bug in the fs/posix_acl.c:get_acl() function. An attacker could trick a legitimate user or a privileged attacker could exploit this to cause a system crash or other unspecified impact with a crafted ext4 image. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.
5.2 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
The Linux kernel does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc/<pid>/cmdline (or /proc/<pid>/environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).
CWE-122 - Heap-based Buffer OverflowAffected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.
5.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the Linux kernel's handling of loopback devices. An attacker, who has permissions to setup loopback disks, may create a denial of service or other unspecified actions.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.
7.5 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system.
7.5 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel, through 4.14.15, allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
An error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
In the function wmi_set_ie() in the Linux kernel the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the ‘ie_len’ argument can cause a buffer overflow and thus a memory corruption leading to a system crash or other or unspecified impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.
5.3 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
ALSA sequencer core initializes the event pool on demand by invoking snd_seq_pool_init() when the first write happens and the pool is empty. A user can reset the pool size manually via ioctl concurrently, and this may lead to UAF or out-of-bound access.
6.1 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel allows local users to cause a denial of service (kernel memory exhaustion) via multiple read accesses to files in the /sys/class/sas_phy directory.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A an integer overflow vulnerability was discovered in the Linux kernel, from version 3.4 through 4.15, in the drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space.
7.0 (High)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A buffer overflow due to a singed-unsigned comparsion was found in hidp_process_report() in the net/bluetooth/hidp/core.c in the Linux kernel. The buffer length is an unsigned int but gets cast to a signed int which in certain conditions can lead to a system panic and a denial-of-service.
6.1 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel can cause a NULL pointer dereference in xfs_ilock_attr_map_shared function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted xfs filesystem image to cause a kernel panic and thus a denial of service.
4.6 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel ext4 filesystem. An out-of-bound access is possible in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
5.2 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image.
4.8 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.
4.2 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel's ext4 filesystem code. A stack-out-of-bounds write in ext4_update_inline_data() is possible when mounting and writing to a crafted ext4 image. An attacker could use this to cause a system crash and a denial of service.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.
4.2 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in the fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image.
4.8 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.
4.8 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in the Linux kernel, before 4.16.6 where the cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.
4.4 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel allows local users to cause a denial of service via a stack-based buffer overflow or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer.
5.3 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A NULL pointer dereference issue was found in the Linux kernel. If the close() and fchownat() system calls share a socket file descriptor as an argument, then the two calls can race and trigger a NULL pointer dereference leading to a system crash and a denial of service.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not.
4.4 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in the crypto subsystem that allowed an attacker to crash the system or possibly escalate privileges with a specially crafted program.
6.2 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial of service.
6.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Important
Improper validation in the bnx2x network card driver of the Linux kernel version 4.15 can allow for denial of service (DoS) attacks via a packet with a gso_size larger than ~9700 bytes. Untrusted guest VMs can exploit this vulnerability in the host machine, causing a crash in the network card.
5.8 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel where an out of memory (oom) killing of a process that has large spans of mlocked memory can result in deferencing a NULL pointer, leading to denial of service.
5.5 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A malformed SG_IO ioctl issued for a SCSI device in the Linux kernel leads to a local kernel data leak manifesting in up to approximately 1000 memory pages copied to the userspace. The problem has limited scope as non-privileged users usually have no permissions to access SCSI device files.
4.1 (Medium)
Affected products
Fixed
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Low
References
230 references
Acknowledgments
Wen Xu
Qualys Research Labs
Google Project Zero
Jann Horn
Microsoft Security Response Center
Ken Johnson
Aalto University - Department of Communications and Networking and Nokia Bell Labs
Juha-Matti Tilli
Red Hat
Florian Weimer
Ondrej Mosnacek
Google
David Rientjes
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639, aarch64)\n\n* A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses. (CVE-2018-5390)\n\n* A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system. (CVE-2018-5391)\n\nSpace precludes documenting all of the security fixes in this advisory. See the descriptions of the remaining security fixes in the related Knowledge Article: \n\nhttps://access.redhat.com/articles/3658021\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting CVE-2018-3639; Juha-Matti Tilli (Aalto University - Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5390 and CVE-2018-5391; Qualys Research Labs for reporting CVE-2018-1120; David Rientjes (Google) for reporting CVE-2018-1000200; and Wen Xu for reporting CVE-2018-1092, CVE-2018-1094, and CVE-2018-1095. The CVE-2018-14619 issue was discovered by Florian Weimer (Red Hat) and Ondrej Mosnacek (Red Hat).\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2948",
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/ssbd",
"url": "https://access.redhat.com/security/vulnerabilities/ssbd"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.6_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.6_release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3658021",
"url": "https://access.redhat.com/articles/3658021"
},
{
"category": "external",
"summary": "1516257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516257"
},
{
"category": "external",
"summary": "1528312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1528312"
},
{
"category": "external",
"summary": "1528323",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1528323"
},
{
"category": "external",
"summary": "1533909",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533909"
},
{
"category": "external",
"summary": "1539508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539508"
},
{
"category": "external",
"summary": "1539706",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539706"
},
{
"category": "external",
"summary": "1541846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1541846"
},
{
"category": "external",
"summary": "1547824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547824"
},
{
"category": "external",
"summary": "1548412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1548412"
},
{
"category": "external",
"summary": "1550142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1550142"
},
{
"category": "external",
"summary": "1551051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551051"
},
{
"category": "external",
"summary": "1551565",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551565"
},
{
"category": "external",
"summary": "1552048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552048"
},
{
"category": "external",
"summary": "1553361",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553361"
},
{
"category": "external",
"summary": "1560777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560777"
},
{
"category": "external",
"summary": "1560788",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560788"
},
{
"category": "external",
"summary": "1560793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560793"
},
{
"category": "external",
"summary": "1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "1568744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568744"
},
{
"category": "external",
"summary": "1571062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571062"
},
{
"category": "external",
"summary": "1571623",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571623"
},
{
"category": "external",
"summary": "1573699",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1573699"
},
{
"category": "external",
"summary": "1575472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1575472"
},
{
"category": "external",
"summary": "1577408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577408"
},
{
"category": "external",
"summary": "1583210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1583210"
},
{
"category": "external",
"summary": "1589324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1589324"
},
{
"category": "external",
"summary": "1590215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1590215"
},
{
"category": "external",
"summary": "1590799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1590799"
},
{
"category": "external",
"summary": "1596795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596795"
},
{
"category": "external",
"summary": "1596802",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596802"
},
{
"category": "external",
"summary": "1596806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596806"
},
{
"category": "external",
"summary": "1596812",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596812"
},
{
"category": "external",
"summary": "1596828",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596828"
},
{
"category": "external",
"summary": "1596842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596842"
},
{
"category": "external",
"summary": "1596846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596846"
},
{
"category": "external",
"summary": "1599161",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1599161"
},
{
"category": "external",
"summary": "1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "1609664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609664"
},
{
"category": "external",
"summary": "1610958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610958"
},
{
"category": "external",
"summary": "1622004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1622004"
},
{
"category": "external",
"summary": "1623067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1623067"
},
{
"category": "external",
"summary": "1629636",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1629636"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2948.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-05-13T01:18:11+00:00",
"generator": {
"date": "2026-05-13T01:18:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2018:2948",
"initial_release_date": "2018-10-30T12:05:20+00:00",
"revision_history": [
{
"date": "2018-10-30T12:05:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-10-30T12:05:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-13T01:18:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-debug-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "perf-0:4.14.0-115.el7a.ppc64le",
"product_id": "perf-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-devel-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-tools-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.14.0-115.el7a.ppc64le",
"product_id": "python-perf-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-115.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-115.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.14.0-115.el7a.ppc64le",
"product_id": "kernel-headers-0:4.14.0-115.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-115.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-115.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:4.14.0-115.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.14.0-115.el7a.noarch",
"product_id": "kernel-doc-0:4.14.0-115.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.14.0-115.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.14.0-115.el7a.src",
"product": {
"name": "kernel-alt-0:4.14.0-115.el7a.src",
"product_id": "kernel-alt-0:4.14.0-115.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.14.0-115.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-115.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-115.el7a.src",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-115.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-115.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-115.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-115.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-115.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-115.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT-7.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-13166",
"cwe": {
"id": "CWE-266",
"name": "Incorrect Privilege Assignment"
},
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1548412"
}
],
"notes": [
{
"category": "description",
"text": "A bug in the 32-bit compatibility layer of the ioctl handling code of the v4l2 video driver in the Linux kernel has been found. A memory protection mechanism ensuring that user-provided buffers always point to a userspace memory were disabled, allowing destination address to be in a kernel space. This flaw could be exploited by an attacker to overwrite a kernel memory from an unprivileged userspace process, leading to privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: v4l2: disabled memory access protection mechanism allowing privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-13166"
},
{
"category": "external",
"summary": "RHBZ#1548412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1548412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-13166",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-13166"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-13166",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13166"
}
],
"release_date": "2017-07-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"category": "workaround",
"details": "A systemtap script intercepting v4l2_compat_ioctl32() function of the [videodev] module and making it to return -ENOIOCTLCMD error value would work just fine, except breaking all 32bit video capturing software, but not 64bit ones.\n\nAlternatively, blacklisting [videodev] module will work too, but it will break all video capturing software.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: v4l2: disabled memory access protection mechanism allowing privilege escalation"
},
{
"cve": "CVE-2017-16648",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1516257"
}
],
"notes": [
{
"category": "description",
"text": "The dvb frontend management subsystem in the Linux kernel contains a use-after-free which can allow a malicious user to write to memory that may be assigned to another kernel structure. This could create memory corruption, panic, or possibly other side affects.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Use-after-free in drivers/media/dvb-core/dvb_frontend.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7, MRG-2 and real-time kernels.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux kernel-alt package.\n\nFuture Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16648"
},
{
"category": "external",
"summary": "RHBZ#1516257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516257"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16648",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16648"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16648",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16648"
}
],
"release_date": "2017-10-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Use-after-free in drivers/media/dvb-core/dvb_frontend.c"
},
{
"cve": "CVE-2017-17805",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2017-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1528312"
}
],
"notes": [
{
"category": "description",
"text": "The Salsa20 encryption algorithm in the Linux kernel, before 4.14.8, does not correctly handle zero-length inputs. This allows a local attacker the ability to use the AF_ALG-based skcipher interface to cause a denial of service (uninitialized-memory free and kernel crash) or have an unspecified other impact by executing a crafted sequence of system calls that use the blkcipher_walk API. Both the generic implementation (crypto/salsa20_generic.c) and x86 implementation (arch/x86/crypto/salsa20_glue.c) of Salsa20 are vulnerable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Salsa20 encryption algorithm does not correctly handle zero-length inputs allowing local attackers to cause denial-of-service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 as the code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17805"
},
{
"category": "external",
"summary": "RHBZ#1528312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1528312"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17805",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17805"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17805",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17805"
}
],
"release_date": "2017-11-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Salsa20 encryption algorithm does not correctly handle zero-length inputs allowing local attackers to cause denial-of-service"
},
{
"cve": "CVE-2017-17806",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1528323"
}
],
"notes": [
{
"category": "description",
"text": "The HMAC implementation (crypto/hmac.c) in the Linux kernel, before 4.14.8, does not validate that the underlying cryptographic hash algorithm is unkeyed. This allows a local attacker, able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3), to cause a kernel stack buffer overflow by executing a crafted sequence of system calls that encounter a missing SHA-3 initialization.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: HMAC implementation does not validate that the underlying cryptographic hash algorithm is unkeyed allowing local attackers to cause denial-of-service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, and 7, its real-time kernel and Red Hat Enterprise MRG 2.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17806"
},
{
"category": "external",
"summary": "RHBZ#1528323",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1528323"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17806",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17806"
}
],
"release_date": "2017-11-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: HMAC implementation does not validate that the underlying cryptographic hash algorithm is unkeyed allowing local attackers to cause denial-of-service"
},
{
"cve": "CVE-2017-18075",
"cwe": {
"id": "CWE-628",
"name": "Function Call with Incorrectly Specified Arguments"
},
"discovery_date": "2018-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1539508"
}
],
"notes": [
{
"category": "description",
"text": "crypto/pcrypt.c in the Linux kernel, before 4.14.13, mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Mishandled freeing of instances in pcrypt.c can allow a local user to cause a denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, and 7, its real-time kernel and Red Hat Enterprise MRG 2, as the code with the flaw is not enabled and is not built in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-18075"
},
{
"category": "external",
"summary": "RHBZ#1539508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-18075",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18075"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-18075",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18075"
}
],
"release_date": "2017-12-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Mishandled freeing of instances in pcrypt.c can allow a local user to cause a denial of service"
},
{
"cve": "CVE-2017-18208",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2018-03-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1551565"
}
],
"notes": [
{
"category": "description",
"text": "The madvise_willneed function in the Linux kernel allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Inifinite loop vulnerability in mm/madvise.c:madvise_willneed() function allows local denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-18208"
},
{
"category": "external",
"summary": "RHBZ#1551565",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551565"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-18208",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-18208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18208"
},
{
"category": "external",
"summary": "https://lwn.net/Articles/618064/",
"url": "https://lwn.net/Articles/618064/"
},
{
"category": "external",
"summary": "https://www.kernel.org/doc/Documentation/filesystems/dax.txt",
"url": "https://www.kernel.org/doc/Documentation/filesystems/dax.txt"
}
],
"release_date": "2017-11-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Inifinite loop vulnerability in mm/madvise.c:madvise_willneed() function allows local denial of service"
},
{
"cve": "CVE-2017-18344",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2018-07-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1610958"
}
],
"notes": [
{
"category": "description",
"text": "The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel doesn\u0027t properly validate the sigevent-\u003esigev_notify field, which leads to out-of-bounds access in the show_timer function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bounds access in the show_timer function in kernel/time/posix-timers.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-18344"
},
{
"category": "external",
"summary": "RHBZ#1610958",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610958"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-18344",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18344"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-18344",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18344"
}
],
"release_date": "2017-12-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"category": "workaround",
"details": "Attached to this bugzilla is a systemtap script that will prevent opening (and therefore reading) the /proc/\u003cprocess\u003e/timers file which is used to leak information.\n\nThe SystemTap script is relatively small and efficient, broken into 3 distinct sections as follows:\n\n--------\n\nprobe kernel.function(\"proc_timers_open@fs/proc/base.c\").return { \n // this is -EACCES\n\t$return = -13;\n message = sprintf(\"CVE-2017-18344 mitigation denied access to %s to %s(%d)\", file_name , execname(), pid());\n // print a warning message at KERN_INFO debug level\n printk(6, message);\n}\n\nprobe begin {\n printk(6, \"Mitigation for CVE-2017-18344 loaded.\\n\");\n}\n\n\nprobe end {\n printk(6, \"Mitigation for CVE-2017-18344 unloaded.\\n\");\n}\n\n\n---------\n\nFirst, the script places a probe at the return of the kernel function \u201cproc_timers_open\u201d when called. This modifies the return value to be EACCES which would return this value to userspace preventing this file from being opened. When the /proc/\u003cpid\u003e/timer file is attempted to be opened, a message will be logged to the kernel log subsystem showing the process and pid of the application attempting to access the timer file. \n\nThis file is not in widespread use at this time, although some applications may read from it to debug or understand their own timers that are set. This mitigation will not be useful in this context.\n\nFinally, the \u201cprobe begin\u201d and \u201cprobe end\u201d code blocks tell systemtap to add the supplied text to the kernel log buffer via the printk function. This creates an audit trail by registering in the system logs exactly when the mitigation is loaded and unloaded. This will need to be compiled with guru mode (-g parameter) to compile.\n\nThis will need to be loaded at each boot to remain effective. Red Hat Product security recommends updating to a patched kernel when it is available.\n\nRed Hat always seeks to provide both mitigations to disable attacks as well as the actual patches to treat the flaw. To learn more about SystemTap, and how it can be used in your management of your Red Hat systems, please refer to Using SystemTap[1] or one of our videos about it within our Customer Portal[2].\n\n1 - https://access.redhat.com/articles/17839\n2 - https://access.redhat.com/search/#/?q=systemtap",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: out-of-bounds access in the show_timer function in kernel/time/posix-timers.c"
},
{
"cve": "CVE-2018-1065",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1547824"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the netfilter/iptables subsystem. A user with the netfilter modification capabilities could insert a rule which could panic the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: netfilter: xtables NULL pointer dereference in ip6_tables.c:ip6t_do_table() leading to a crash",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1065"
},
{
"category": "external",
"summary": "RHBZ#1547824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1547824"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1065",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1065"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1065",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1065"
}
],
"release_date": "2018-02-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: netfilter: xtables NULL pointer dereference in ip6_tables.c:ip6t_do_table() leading to a crash"
},
{
"cve": "CVE-2018-1068",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2018-03-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1552048"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1068"
},
{
"category": "external",
"summary": "RHBZ#1552048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552048"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1068",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1068"
}
],
"release_date": "2018-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c"
},
{
"acknowledgments": [
{
"names": [
"Wen Xu"
]
}
],
"cve": "CVE-2018-1092",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-03-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1560777"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/mballoc.c:ext4_process_freed_data() function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted ext4 image to cause a kernel panic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference in ext4/mballoc.c:ext4_process_freed_data() when mounting crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1092"
},
{
"category": "external",
"summary": "RHBZ#1560777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1092",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1092"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1092",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1092"
}
],
"release_date": "2018-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: NULL pointer dereference in ext4/mballoc.c:ext4_process_freed_data() when mounting crafted ext4 image"
},
{
"acknowledgments": [
{
"names": [
"Wen Xu"
]
}
],
"cve": "CVE-2018-1094",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-03-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1560788"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/xattr.c:ext4_xattr_inode_hash() function. An attacker could trick a legitimate user or a privileged attacker could exploit this to cause a NULL pointer dereference with a crafted ext4 image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference in ext4/xattr.c:ext4_xattr_inode_hash() causes crash with crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1094"
},
{
"category": "external",
"summary": "RHBZ#1560788",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560788"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1094",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1094"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1094",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1094"
}
],
"release_date": "2018-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: NULL pointer dereference in ext4/xattr.c:ext4_xattr_inode_hash() causes crash with crafted ext4 image"
},
{
"acknowledgments": [
{
"names": [
"Wen Xu"
]
}
],
"cve": "CVE-2018-1095",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-03-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1560793"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulnerable to an out-of-bound access bug in the fs/posix_acl.c:get_acl() function. An attacker could trick a legitimate user or a privileged attacker could exploit this to cause a system crash or other unspecified impact with a crafted ext4 image. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bound access in fs/posix_acl.c:get_acl() causes crash with crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1095"
},
{
"category": "external",
"summary": "RHBZ#1560793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1560793"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1095",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1095"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1095",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1095"
}
],
"release_date": "2018-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: out-of-bound access in fs/posix_acl.c:get_acl() causes crash with crafted ext4 image"
},
{
"cve": "CVE-2018-1118",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1573699"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1118"
},
{
"category": "external",
"summary": "RHBZ#1573699",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1573699"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1118",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1118"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1118",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1118"
}
],
"release_date": "2018-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()"
},
{
"acknowledgments": [
{
"names": [
"Qualys Research Labs"
]
}
],
"cve": "CVE-2018-1120",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2018-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1575472"
}
],
"notes": [
{
"category": "description",
"text": "By mmap()ing a FUSE-backed file onto a process\u0027s memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc/\u003cpid\u003e/cmdline (or /proc/\u003cpid\u003e/environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: fuse-backed file mmap-ed onto process cmdline arguments causes denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1120"
},
{
"category": "external",
"summary": "RHBZ#1575472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1575472"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1120",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1120"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1120",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1120"
},
{
"category": "external",
"summary": "http://seclists.org/oss-sec/2018/q2/122",
"url": "http://seclists.org/oss-sec/2018/q2/122"
}
],
"release_date": "2018-05-17T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 2.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: fuse-backed file mmap-ed onto process cmdline arguments causes denial of service"
},
{
"acknowledgments": [
{
"names": [
"Jann Horn"
],
"organization": "Google Project Zero"
},
{
"names": [
"Ken Johnson"
],
"organization": "Microsoft Security Response Center"
}
],
"cve": "CVE-2018-3639",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-03-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1566890"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load \u0026 Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative store bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/ssbd",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-3639"
},
{
"category": "external",
"summary": "RHBZ#1566890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1566890"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-3639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/ssbd",
"url": "https://access.redhat.com/security/vulnerabilities/ssbd"
},
{
"category": "external",
"summary": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528",
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf",
"url": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf"
},
{
"category": "external",
"summary": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf",
"url": "https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html"
}
],
"release_date": "2018-05-21T21:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative store bypass"
},
{
"cve": "CVE-2018-5344",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2018-01-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1533909"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s handling of loopback devices. An attacker, who has permissions to setup loopback disks, may create a denial of service or other unspecified actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: drivers/block/loop.c mishandles lo_release serialization allowing denial-of-service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 and MRG-2.\n\nFuture Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5344"
},
{
"category": "external",
"summary": "RHBZ#1533909",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533909"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5344",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5344"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5344",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5344"
}
],
"release_date": "2018-01-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: drivers/block/loop.c mishandles lo_release serialization allowing denial-of-service"
},
{
"acknowledgments": [
{
"names": [
"Juha-Matti Tilli"
],
"organization": "Aalto University - Department of Communications and Networking and Nokia Bell Labs"
}
],
"cve": "CVE-2018-5390",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1601704"
}
],
"notes": [
{
"category": "description",
"text": "A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system. Maintaining the denial of service condition requires continuous two-way TCP sessions to a reachable open port, thus the attacks cannot be performed using spoofed IP addresses.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/3553061\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9. Future kernel updates for the respective releases will address this issue.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, but to a lesser degree. As such, the issue severity for RHEL5 is considered Moderate. This is not currently planned to be addressed in future updates of the product due to its life cycle and the issue severity. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5390"
},
{
"category": "external",
"summary": "RHBZ#1601704",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1601704"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5390",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5390"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/962459",
"url": "https://www.kb.cert.org/vuls/id/962459"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/netdev/msg514742.html",
"url": "https://www.spinics.net/lists/netdev/msg514742.html"
}
],
"release_date": "2018-08-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)"
},
{
"acknowledgments": [
{
"names": [
"Juha-Matti Tilli"
],
"organization": "Aalto University - Department of Communications and Networking and Nokia Bell Labs"
}
],
"cve": "CVE-2018-5391",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1609664"
}
],
"notes": [
{
"category": "description",
"text": "A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/articles/3553061\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64, and Red Hat Enterprise Linux 7 for Power 9. Future kernel updates for the respective releases will address this issue.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, but to a lesser degree. As such, the issue severity for RHEL5 is considered Moderate. This is not currently planned to be addressed in future updates of the product due to its life cycle and the issue severity. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5391"
},
{
"category": "external",
"summary": "RHBZ#1609664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609664"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5391",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5391"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5391",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5391"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/3553061",
"url": "https://access.redhat.com/articles/3553061"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/641765",
"url": "https://www.kb.cert.org/vuls/id/641765"
}
],
"release_date": "2018-08-14T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
},
{
"category": "workaround",
"details": "One may change the default 4MB and 3MB values of net.ipv4.ipfrag_high_thresh and net.ipv4.ipfrag_low_thresh (and their ipv6 counterparts net.ipv6.ipfrag_high_thresh and net.ipv6.ipfrag_low_thresh) to 256 kB and 192 kB (respectively) or below. Tests show some to significant CPU saturation drop during an attack, depending on a hardware, configuration and environment.\n\nThere can be some impact on performance though, due to ipfrag_high_thresh of 262144 bytes, as only two 64K fragments can fit in the reassembly queue at the same time. For example, there is a risk of breaking applications that rely on large UDP packets.\n\nSee the Mitigation section in the https://access.redhat.com/articles/3553061 article for the script to quickly change to/from default and lower settings.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack)"
},
{
"cve": "CVE-2018-5750",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1539706"
}
],
"notes": [
{
"category": "description",
"text": "The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel, through 4.14.15, allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Kernel address information leak in drivers/acpi/sbshc.c:acpi_smbus_hc_add() function potentially allowing KASLR bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, and Red Hat Enterprise MRG 2, as KASLR feature is not present or enabled in these products.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5750"
},
{
"category": "external",
"summary": "RHBZ#1539706",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539706"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5750",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5750"
}
],
"release_date": "2017-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Kernel address information leak in drivers/acpi/sbshc.c:acpi_smbus_hc_add() function potentially allowing KASLR bypass"
},
{
"cve": "CVE-2018-5803",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2018-03-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1551051"
}
],
"notes": [
{
"category": "description",
"text": "An error in the \"_sctp_make_chunk()\" function (net/sctp/sm_make_chunk.c) when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5803"
},
{
"category": "external",
"summary": "RHBZ#1551051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1551051"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5803",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5803"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5803",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5803"
}
],
"release_date": "2018-02-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service"
},
{
"cve": "CVE-2018-5848",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2018-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1590799"
}
],
"notes": [
{
"category": "description",
"text": "In the function wmi_set_ie() in the Linux kernel the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the \u2018ie_len\u2019 argument can cause a buffer overflow and thus a memory corruption leading to a system crash or other or unspecified impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: buffer overflow in drivers/net/wireless/ath/wil6210/wmi.c:wmi_set_ie() may lead to memory corruption",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-5848"
},
{
"category": "external",
"summary": "RHBZ#1590799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1590799"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-5848",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5848"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5848",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5848"
}
],
"release_date": "2017-12-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: buffer overflow in drivers/net/wireless/ath/wil6210/wmi.c:wmi_set_ie() may lead to memory corruption"
},
{
"cve": "CVE-2018-7566",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2018-01-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1550142"
}
],
"notes": [
{
"category": "description",
"text": "ALSA sequencer core initializes the event pool on demand by invoking snd_seq_pool_init() when the first write happens and the pool is empty. A user can reset the pool size manually via ioctl concurrently, and this may lead to UAF or out-of-bound access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: race condition in snd_seq_write() may lead to UAF or OOB-access",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7566"
},
{
"category": "external",
"summary": "RHBZ#1550142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1550142"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7566",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7566"
}
],
"release_date": "2018-02-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: race condition in snd_seq_write() may lead to UAF or OOB-access"
},
{
"cve": "CVE-2018-7757",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-03-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1553361"
}
],
"notes": [
{
"category": "description",
"text": "Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel allows local users to cause a denial of service (kernel memory exhaustion) via multiple read accesses to files in the /sys/class/sas_phy directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7757"
},
{
"category": "external",
"summary": "RHBZ#1553361",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553361"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7757",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7757"
}
],
"release_date": "2018-03-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c"
},
{
"cve": "CVE-2018-8781",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2018-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1571062"
}
],
"notes": [
{
"category": "description",
"text": "A an integer overflow vulnerability was discovered in the Linux kernel, from version 3.4 through 4.15, in the drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Integer overflow in drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() can allow attackers to execute code in kernel space",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-8781"
},
{
"category": "external",
"summary": "RHBZ#1571062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571062"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-8781",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8781"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-8781",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-8781"
}
],
"release_date": "2018-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Integer overflow in drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() can allow attackers to execute code in kernel space"
},
{
"cve": "CVE-2018-9363",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2018-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1623067"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overflow due to a singed-unsigned comparsion was found in hidp_process_report() in the net/bluetooth/hidp/core.c in the Linux kernel. The buffer length is an unsigned int but gets cast to a signed int which in certain conditions can lead to a system panic and a denial-of-service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Buffer overflow in hidp_process_report",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-9363"
},
{
"category": "external",
"summary": "RHBZ#1623067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1623067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-9363",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9363"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-9363",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-9363"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Buffer overflow in hidp_process_report"
},
{
"cve": "CVE-2018-10322",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1571623"
}
],
"notes": [
{
"category": "description",
"text": "The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel can cause a NULL pointer dereference in xfs_ilock_attr_map_shared function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted xfs filesystem image to cause a kernel panic and thus a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Invalid pointer dereference in xfs_ilock_attr_map_shared() when mounting crafted xfs image allowing denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10322"
},
{
"category": "external",
"summary": "RHBZ#1571623",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1571623"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10322",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10322"
}
],
"release_date": "2018-04-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Invalid pointer dereference in xfs_ilock_attr_map_shared() when mounting crafted xfs image allowing denial of service"
},
{
"cve": "CVE-2018-10877",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596795"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel ext4 filesystem. An out-of-bound access is possible in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bound access in ext4_ext_drop_refs function with a crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10877"
},
{
"category": "external",
"summary": "RHBZ#1596795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596795"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10877",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10877"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10877",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10877"
}
],
"release_date": "2018-04-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: out-of-bound access in ext4_ext_drop_refs function with a crafted ext4 image"
},
{
"cve": "CVE-2018-10878",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596802"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bound write in ext4_init_block_bitmap function with a crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10878"
},
{
"category": "external",
"summary": "RHBZ#1596802",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596802"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10878"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10878",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10878"
}
],
"release_date": "2018-05-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: out-of-bound write in ext4_init_block_bitmap function with a crafted ext4 image"
},
{
"cve": "CVE-2018-10879",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596806"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free detected in ext4_xattr_set_entry with a crafted file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10879"
},
{
"category": "external",
"summary": "RHBZ#1596806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10879",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10879"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10879",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10879"
}
],
"release_date": "2018-06-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: use-after-free detected in ext4_xattr_set_entry with a crafted file"
},
{
"cve": "CVE-2018-10880",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596812"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem code. A stack-out-of-bounds write in ext4_update_inline_data() is possible when mounting and writing to a crafted ext4 image. An attacker could use this to cause a system crash and a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: stack-out-of-bounds write in ext4_update_inline_data function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10880"
},
{
"category": "external",
"summary": "RHBZ#1596812",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596812"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10880",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10880"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10880",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10880"
}
],
"release_date": "2018-06-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: stack-out-of-bounds write in ext4_update_inline_data function"
},
{
"cve": "CVE-2018-10881",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596828"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bound access in ext4_get_group_info() when mounting and operating a crafted ext4 image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10881"
},
{
"category": "external",
"summary": "RHBZ#1596828",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596828"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10881",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10881"
}
],
"release_date": "2018-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: out-of-bound access in ext4_get_group_info() when mounting and operating a crafted ext4 image"
},
{
"cve": "CVE-2018-10882",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596842"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bound write in the fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: stack-out-of-bounds write infs/jbd2/transaction.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10882"
},
{
"category": "external",
"summary": "RHBZ#1596842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596842"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10882",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10882"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10882",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10882"
}
],
"release_date": "2018-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: stack-out-of-bounds write infs/jbd2/transaction.c"
},
{
"cve": "CVE-2018-10883",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2018-06-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1596846"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bound write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: stack-out-of-bounds write in jbd2_journal_dirty_metadata function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10883"
},
{
"category": "external",
"summary": "RHBZ#1596846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1596846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10883",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10883"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10883",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10883"
}
],
"release_date": "2018-06-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: stack-out-of-bounds write in jbd2_journal_dirty_metadata function"
},
{
"cve": "CVE-2018-10940",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2018-05-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1577408"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel, before 4.16.6 where the cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: incorrect memory bounds check in drivers/cdrom/cdrom.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-10940"
},
{
"category": "external",
"summary": "RHBZ#1577408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577408"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-10940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-10940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-10940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10940"
}
],
"release_date": "2018-04-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: incorrect memory bounds check in drivers/cdrom/cdrom.c"
},
{
"cve": "CVE-2018-11506",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2018-05-28T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1583210"
}
],
"notes": [
{
"category": "description",
"text": "The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel allows local users to cause a denial of service via a stack-based buffer overflow or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Stack-based buffer overflow in drivers/scsi/sr_ioctl.c allows denial of service or other unspecified impact",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-11506"
},
{
"category": "external",
"summary": "RHBZ#1583210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1583210"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-11506",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-11506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11506"
}
],
"release_date": "2018-05-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Stack-based buffer overflow in drivers/scsi/sr_ioctl.c allows denial of service or other unspecified impact"
},
{
"cve": "CVE-2018-12232",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-06-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1590215"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference issue was found in the Linux kernel. If the close() and fchownat() system calls share a socket file descriptor as an argument, then the two calls can race and trigger a NULL pointer dereference leading to a system crash and a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference if close and fchownat system calls share a socket file descriptor",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12232"
},
{
"category": "external",
"summary": "RHBZ#1590215",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1590215"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12232",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12232"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12232",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12232"
}
],
"release_date": "2018-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference if close and fchownat system calls share a socket file descriptor"
},
{
"cve": "CVE-2018-13405",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2018-07-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1599161"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing check in fs/inode.c:inode_init_owner() does not clear SGID bit on non-directories for non-members",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-13405"
},
{
"category": "external",
"summary": "RHBZ#1599161",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1599161"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-13405",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-13405"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-13405",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-13405"
}
],
"release_date": "2018-07-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: Missing check in fs/inode.c:inode_init_owner() does not clear SGID bit on non-directories for non-members"
},
{
"acknowledgments": [
{
"names": [
"Florian Weimer",
"Ondrej Mosnacek"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2018-14619",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2018-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1622004"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto subsystem that allowed an attacker \r\nto crash the system or possibly escalate privileges with a specially crafted program.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: crash (possible privesc) in kernel crypto api.",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-14619"
},
{
"category": "external",
"summary": "RHBZ#1622004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1622004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-14619",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14619"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-14619",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14619"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b32a7dc8aef1882fbf983eb354837488cc9d54dc",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b32a7dc8aef1882fbf983eb354837488cc9d54dc"
}
],
"release_date": "2018-08-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: crash (possible privesc) in kernel crypto api."
},
{
"cve": "CVE-2018-14641",
"cwe": {
"id": "CWE-456",
"name": "Missing Initialization of a Variable"
},
"discovery_date": "2018-09-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1629636"
}
],
"notes": [
{
"category": "description",
"text": "A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: a bug in ip_frag_reasm() can cause a crash in ip_do_fragment()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-14641"
},
{
"category": "external",
"summary": "RHBZ#1629636",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1629636"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-14641",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14641"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-14641",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14641"
}
],
"release_date": "2018-09-18T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: a bug in ip_frag_reasm() can cause a crash in ip_do_fragment()"
},
{
"cve": "CVE-2018-1000026",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2018-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1541846"
}
],
"notes": [
{
"category": "description",
"text": "Improper validation in the bnx2x network card driver of the Linux kernel version 4.15 can allow for denial of service (DoS) attacks via a packet with a gso_size larger than ~9700 bytes. Untrusted guest VMs can exploit this vulnerability in the host machine, causing a crash in the network card.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Improper validation in bnx2x network card driver can allow for denial of service attacks via crafted packet",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6, as supported configurations are not affected.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000026"
},
{
"category": "external",
"summary": "RHBZ#1541846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1541846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000026",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000026"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000026",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000026"
}
],
"release_date": "2018-01-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Improper validation in bnx2x network card driver can allow for denial of service attacks via crafted packet"
},
{
"acknowledgments": [
{
"names": [
"David Rientjes"
],
"organization": "Google"
}
],
"cve": "CVE-2018-1000200",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2018-04-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1568744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel where an out of memory (oom) killing of a process that has large spans of mlocked memory can result in deferencing a NULL pointer, leading to denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference on OOM kill of large mlocked process",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000200"
},
{
"category": "external",
"summary": "RHBZ#1568744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1568744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000200",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000200"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000200",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000200"
}
],
"release_date": "2018-04-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference on OOM kill of large mlocked process"
},
{
"cve": "CVE-2018-1000204",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2018-06-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1589324"
}
],
"notes": [
{
"category": "description",
"text": "A malformed SG_IO ioctl issued for a SCSI device in the Linux kernel leads to a local kernel data leak manifesting in up to approximately 1000 memory pages copied to the userspace. The problem has limited scope as non-privileged users usually have no permissions to access SCSI device files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Infoleak caused by incorrect handling of the SG_IO ioctl",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000204"
},
{
"category": "external",
"summary": "RHBZ#1589324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1589324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000204",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000204"
}
],
"release_date": "2018-05-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-10-30T12:05:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2948"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-abi-whitelists-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-alt-0:4.14.0-115.el7a.src",
"7Server-optional-RHELALT-7.6:kernel-bootwrapper-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debug-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-debuginfo-common-ppc64le-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-doc-0:4.14.0-115.el7a.noarch",
"7Server-optional-RHELALT-7.6:kernel-headers-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:kernel-tools-libs-devel-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:perf-debuginfo-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-0:4.14.0-115.el7a.ppc64le",
"7Server-optional-RHELALT-7.6:python-perf-debuginfo-0:4.14.0-115.el7a.ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Infoleak caused by incorrect handling of the SG_IO ioctl"
}
]
}
SUSE-SU-2018:2380-1
Vulnerability from csaf_suse - Published: 2018-08-16 12:30 - Updated: 2018-08-16 12:30Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-3620: Local attackers on baremetal systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data. (bnc#1087081).
- CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data, even from other virtual machines or the host system. (bnc#1089343).
- CVE-2018-5391 aka 'FragmentSmack': A flaw in the IP packet reassembly could be used by remote attackers to consume lots of CPU time (bnc#1103097).
- CVE-2018-10876: A flaw was found in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image. (bnc#1099811)
- CVE-2018-10877: The ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image. (bnc#1099846)
- CVE-2018-10878: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image. (bnc#1099813)
- CVE-2018-10879: A flaw was found in the ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image. (bnc#1099844)
- CVE-2018-10880: Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service. (bnc#1099845)
- CVE-2018-10881: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099864)
- CVE-2018-10882: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image. (bnc#1099849)
- CVE-2018-10883: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099863)
The following non-security bugs were fixed:
- acpi / lpss: Only call pwm_add_table() for Bay Trail PWM if PMIC HRV is 2 (bsc#1051510).
- af_key: Always verify length of provided sadb_key (bsc#1051510).
- af_key: fix buffer overread in parse_exthdrs() (bsc#1051510).
- af_key: fix buffer overread in verify_address_len() (bsc#1051510).
- afs: Fix directory permissions check (bsc#1101828).
- agp: uninorth: make two functions static (bsc#1051510).
- alsa: emu10k1: add error handling for snd_ctl_add (bsc#1051510).
- alsa: emu10k1: Rate-limit error messages about page errors (bsc#1051510).
- alsa: fm801: add error handling for snd_ctl_add (bsc#1051510).
- alsa: usb-audio: Apply rate limit to warning messages in URB complete callback (bsc#1051510).
- arm64: Correct type for PUD macros (bsc#1103723).
- arm64: Disable unhandled signal log messages by default (bsc#1103724).
- arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bsc#1103725).
- arm64: mm: Fix set_memory_valid() declaration (bsc#1103726).
- arm64: perf: correct PMUVer probing (bsc#1103727).
- arm64: ptrace: Avoid setting compat FPR to garbage if get_user fails (bsc#1103728).
- arm64: spinlock: Fix theoretical trylock() A-B-A with LSE atomics (bsc#1103729).
- arm64: vdso: fix clock_getres for 4GiB-aligned res (bsc#1103730).
- arm: 8715/1: add a private asm/unaligned.h (bsc#1051510).
- arm: 8720/1: ensure dump_instr() checks addr_limit (bsc#1051510).
- arm: 8721/1: mm: dump: check hardware RO bit for LPAE (bsc#1051510).
- arm: 8722/1: mm: make STRICT_KERNEL_RWX effective for LPAE (bsc#1051510).
- arm: 8731/1: Fix csum_partial_copy_from_user() stack mismatch (bsc#1051510).
- arm: 8743/1: bL_switcher: add MODULE_LICENSE tag (bsc#1051510).
- arm: 8746/1: vfp: Go back to clearing vfp_current_hw_state[] (bsc#1051510).
- arm: 8748/1: mm: Define vdso_start, vdso_end as array (bsc#1051510).
- arm: 8753/1: decompressor: add a missing parameter to the addruart macro (bsc#1051510).
- arm: 8758/1: decompressor: restore r1 and r2 just before jumping to the kernel (bsc#1051510).
- arm: 8764/1: kgdb: fix NUMREGBYTES so that gdb_regs[] is the correct size (bsc#1051510).
- arm: 8769/1: kprobes: Fix to use get_kprobe_ctlblk after irq-disabed (bsc#1051510).
- arm: 8770/1: kprobes: Prohibit probing on optimized_callback (bsc#1051510).
- arm: 8771/1: kprobes: Prohibit kprobes on do_undefinstr (bsc#1051510).
- arm: 8772/1: kprobes: Prohibit kprobes on get_user functions (bsc#1051510).
- arm: AM33xx: PRM: Remove am33xx_pwrdm_read_prev_pwrst function (bsc#1051510).
- arm: amba: Fix race condition with driver_override (bsc#1051510).
- arm: amba: Fix wrong indentation in driver_override_store() (bsc#1051510).
- arm: amba: Make driver_override output consistent with other buses (bsc#1051510).
- arm: at91: do not select CONFIG_ARM_CPU_SUSPEND for old platforms (bsc#1051510).
- arm: avoid faulting on qemu (bsc#1051510).
- arm: BUG if jumping to usermode address in kernel mode (bsc#1051510).
- arm-ccn: perf: Prevent module unload while PMU is in use (bsc#1051510).
- arm: davinci: Add dma_mask to dm365's eDMA device (bsc#1051510).
- arm: davinci: board-da830-evm: fix GPIO lookup for MMC/SD (bsc#1051510).
- arm: davinci: board-da850-evm: fix GPIO lookup for MMC/SD (bsc#1051510).
- arm: davinci: board-da850-evm: fix WP pin polarity for MMC/SD (bsc#1051510).
- arm: davinci: board-dm355-evm: fix broken networking (bsc#1051510).
- arm: davinci: board-dm646x-evm: pass correct I2C adapter id for VPIF (bsc#1051510).
- arm: davinci: board-dm646x-evm: set VPIF capture card name (bsc#1051510).
- arm: davinci: board-omapl138-hawk: fix GPIO numbers for MMC/SD lookup (bsc#1051510).
- arm: davinci: dm646x: fix timer interrupt generation (bsc#1051510).
- arm: davinci: fix mmc entries in dm365's dma_slave_map (bsc#1051510).
- arm: davinci: fix the GPIO lookup for omapl138-hawk (bsc#1051510).
- arm: davinci: Use platform_device_register_full() to create pdev for dm365's eDMA (bsc#1051510).
- arm: DRA722: remove redundant definition of 1.0 device (bsc#1051510).
- arm: fix return value of parse_cpu_capacity (bsc#1051510).
- arm: kexec: fix failure to boot crash kernel (bsc#1051510).
- arm: kexec: fix kdump register saving on panic() (bsc#1051510).
- arm: keystone: fix platform_domain_notifier array overrun (bsc#1051510).
- arm: kvm: fix building with gcc-8 (bsc#1051510).
- arm: multi_v7_defconfig: Replace DRM_RCAR_HDMI by generic bridge options (bsc#1051510).
- arm: multi_v7_defconfig: Replace SND_SOC_RSRC_CARD by SND_SIMPLE_SCU_CARD (bsc#1051510).
- arm: mvebu: Fix broken PL310_ERRATA_753970 selects (bsc#1051510).
- arm: OMAP1: clock: Fix debugfs_create_*() usage (bsc#1051510).
- arm: OMAP2+: Fix SRAM virt to phys translation for save_secure_ram_context (bsc#1051510).
- arm: omap2: hide omap3_save_secure_ram on non-OMAP3 builds (bsc#1051510).
- arm: OMAP2+: omap_device: drop broken RPM status update from suspend_noirq (bsc#1051510).
- arm: OMAP2+: powerdomain: use raw_smp_processor_id() for trace (bsc#1051510).
- arm: OMAP2+: timer: fix a kmemleak caused in omap_get_timer_dt (bsc#1051510).
- arm: OMAP3: Fix prm wake interrupt for resume (bsc#1051510).
- arm: OMAP3: hwmod_data: add missing module_offs for MMC3 (bsc#1051510).
- arm: OMAP3+: PRM: fix of_irq_get() result check (bsc#1051510).
- arm: OMAP4+: PRM: fix of_irq_get() result checks (bsc#1051510).
- arm: OMAP: Fix dmtimer init for omap1 (bsc#1051510).
- arm: OMAP: Fix SRAM W+X mapping (bsc#1051510).
- arm: orion5x: Revert commit 4904dbda41c8 (bsc#1051510).
- arm: orion: fix orion_ge00_switch_board_info initialization (bsc#1051510).
- arm: pxa: select both FB and FB_W100 for eseries (bsc#1051510).
- arm: pxa/tosa-bt: add MODULE_LICENSE tag (bsc#1051510).
- arm: remove wrong CONFIG_PROC_SYSCTL ifdef (bsc#1051510).
- arm: s3c24xx: Fix NAND ECC mode for mini2440 board (bsc#1051510).
- arm: shmobile: defconfig: Enable missing PCIE_RCAR dependency (bsc#1051510).
- arm: shmobile: defconfig: Replace DRM_RCAR_HDMI by generic bridge options (bsc#1051510).
- arm: shmobile: defconfig: Replace SND_SOC_RSRC_CARD by SND_SIMPLE_SCU_CARD (bsc#1051510).
- arm: shmobile: defconfig: Replace USB_XHCI_RCAR by USB_XHCI_PLATFORM (bsc#1051510).
- arm: shmobile: rcar-gen2: Fix deadlock in regulator quirk (bsc#1051510).
- arm: socfpga_defconfig: Remove QSPI Sector 4K size force (bsc#1051510).
- arm: spear13xx: Fix dmas cells (bsc#1051510).
- arm: sunxi_defconfig: Enable CMA (bsc#1051510).
- arm: sunxi: fix the core number of V3s in sunxi README (bsc#1051510).
- asoc: dpcm: fix BE dai not hw_free and shutdown (bsc#1051510).
- asoc: topology: Add missing clock gating parameter when parsing hw_configs (bsc#1051510).
- asoc: topology: Fix bclk and fsync inversion in set_link_hw_format() (bsc#1051510).
- ata: do not schedule hot plug if it is a sas host ().
- ath: Add regulatory mapping for APL13_WORLD (bsc#1051510).
- ath: Add regulatory mapping for APL2_FCCA (bsc#1051510).
- ath: Add regulatory mapping for Bahamas (bsc#1051510).
- ath: Add regulatory mapping for Bermuda (bsc#1051510).
- ath: Add regulatory mapping for ETSI8_WORLD (bsc#1051510).
- ath: Add regulatory mapping for FCC3_ETSIC (bsc#1051510).
- ath: Add regulatory mapping for Serbia (bsc#1051510).
- ath: Add regulatory mapping for Tanzania (bsc#1051510).
- ath: Add regulatory mapping for Uganda (bsc#1051510).
- audit: fix potential null dereference 'context->module.name' (bsc#1051510).
- backlight: pwm_bl: Do not use GPIOF_* with gpiod_get_direction (bsc#1051510).
- bdi: Move cgroup bdi_writeback to a dedicated low concurrency workqueue (bsc#1101867).
- befs_lookup(): use d_splice_alias() (bsc#1101844).
- block: Fix transfer when chunk sectors exceeds max (bsc#1101874).
- bluetooth: btusb: Add a new Realtek 8723DE ID 2ff8:b011 (bsc#1051510).
- bluetooth: btusb: add ID for LiteOn 04ca:301a (bsc#1051510).
- bluetooth: hci_qca: Fix 'Sleep inside atomic section' warning (bsc#1051510).
- branch-check: fix long->int truncation when profiling branches (bsc#1101116,).
- brcmfmac: Add support for bcm43364 wireless chipset (bsc#1051510).
- cachefiles: Fix missing clear of the CACHEFILES_OBJECT_ACTIVE flag (bsc#1099858).
- cachefiles: Fix refcounting bug in backing-file read monitoring (bsc#1099858).
- cachefiles: Wait rather than BUG'ing on 'Unexpected object collision' (bsc#1099858).
- can: dev: increase bus-off message severity (bsc#1051510).
- can: ems_usb: Fix memory leak on ems_usb_disconnect() (bsc#1051510).
- can: m_can: change comparison to bitshift when dealing with a mask (bsc#1051510).
- cdrom: do not call check_disk_change() inside cdrom_open() (bsc#1101872).
- clk: at91: fix clk-generated compilation (bsc#1051510).
- clk: renesas: cpg-mssr: Stop using printk format %pCr (bsc#1051510).
- coccinelle: fix parallel build with CHECK=scripts/coccicheck (bsc#1051510).
- compiler.h: enable builtin overflow checkers and add fallback code (bsc#1101116,).
- cpufreq: intel_pstate: Limit the scope of HWP dynamic boost platforms (bsc#1066110).
- cpu/hotplug: Make bringup/teardown of smp threads symmetric (bsc#1089343).
- cpu/hotplug: Provide knobs to control SMT (bsc#1089343).
- cpu/hotplug: Split do_cpu_down() (bsc#1089343).
- crypto: authenc - do not leak pointers to authenc keys (bsc#1051510).
- crypto: authencesn - do not leak pointers to authenc keys (bsc#1051510).
- crypto: padlock-aes - Fix Nano workaround data corruption (bsc#1051510).
- delayacct: fix crash in delayacct_blkio_end() after delayacct init failure (bsc#1104066).
- dm: add writecache target (bsc#1101116,).
- dm: prevent DAX mounts if not supported (bsc#1103917).
- dm writecache: support optional offset for start of device (bsc#1101116,).
- dm writecache: use 2-factor allocator arguments (bsc#1101116,).
- doc: Add vendor prefix for Kieback & Peter GmbH (bsc#1051510).
- drivers: soc: sunxi: fix error processing on base address when claiming (bsc#1051510).
- drm: Add DP PSR2 sink enable bit (bsc#1051510).
- drm/amdgpu: Remove VRAM from shared bo domains (bsc#1051510).
- drm/atomic: Check old_plane_state->crtc in drm_atomic_helper_async_check() (bsc#1051510).
- drm/atomic: Handling the case when setting old crtc for plane (bsc#1051510).
- drm/atomic-helper: Drop plane->fb references only for drm_atomic_helper_shutdown() (bsc#1051510).
- drm/atomic: Initialize variables in drm_atomic_helper_async_check() to make gcc happy (bsc#1051510).
- drm/atomic: Make async plane update checks work as intended, v2 (bsc#1051510).
- drm/atomic: Make atomic helper track newly assigned planes correctly, v2 (bsc#1051510).
- drm/atomic: Make atomic iterators less surprising (bsc#1051510).
- drm/dp/mst: Fix off-by-one typo when dump payload table (bsc#1051510).
- drm/gma500: fix psb_intel_lvds_mode_valid()'s return type (bsc#1051510).
- drm/nouveau/fifo/gk104-: poll for runlist update completion (bsc#1051510).
- drm/radeon: fix mode_valid's return type (bsc#1051510).
- drm: re-enable error handling (bsc#1051510).
- drm/vc4: Reset ->{x, y}_scaling[1] when dealing with uniplanar formats (bsc#1051510).
- Enable / support pinctrl-lewisburg ()
- ext2: fix a block leak (bsc#1101875).
- ext4: add more mount time checks of the superblock (bsc#1101900).
- ext4: bubble errors from ext4_find_inline_data_nolock() up to ext4_iget() (bsc#1101896).
- ext4: check superblock mapped prior to committing (bsc#1101902).
- ext4: do not update s_last_mounted of a frozen fs (bsc#1101841).
- ext4: factor out helper ext4_sample_last_mounted() (bsc#1101841).
- ext4: fix check to prevent initializing reserved inodes (bsc#1104319).
- ext4: fix fencepost error in check for inode count overflow during resize (bsc#1101853).
- ext4: include the illegal physical block in the bad map ext4_error msg (bsc#1101903).
- ext4: report delalloc reserve as non-free in statfs for project quota (bsc#1101843).
- ext4: update mtime in ext4_punch_hole even if no blocks are released (bsc#1101895).
- f2fs: call unlock_new_inode() before d_instantiate() (bsc#1101837).
- fix io_destroy()/aio_complete() race (bsc#1101852).
- Force log to disk before reading the AGF during a fstrim (bsc#1101893).
- fs: allow per-device dax status checking for filesystems (bsc#1103917).
- fscache: Allow cancelled operations to be enqueued (bsc#1099858).
- fscache: Fix hanging wait on page discarded by writeback (bsc#1101885).
- fscache: Fix reference overput in fscache_attach_object() error handling (bsc#1099858).
- fs: clear writeback errors in inode_init_always (bsc#1101882).
- fs: do not scan the inode cache before SB_BORN is set (bsc#1101883).
- genirq: Check __free_irq() return value for NULL (bsc#1103517).
- hid: hid-plantronics: Re-resend Update to map button for PTT products (bsc#1051510).
- hid: i2c-hid: check if device is there before really probing (bsc#1051510).
- hippi: Fix a Fix a possible sleep-in-atomic bug in rr_close (bsc#1051510).
- hv_netvsc: Ensure correct teardown message sequence order ().
- hv/netvsc: fix handling of fallback to single queue mode ().
- hv_netvsc: Fix net device attach on older Windows hosts ().
- hv_netvsc: set master device (bsc#1051979).
- hv_netvsc: Split netvsc_revoke_buf() and netvsc_teardown_gpadl() ().
- hv_netvsc: split sub-channel setup into async and sync ().
- hv_netvsc: Use Windows version instead of NVSP version on GPAD teardown ().
- ibmasm: do not write out of bounds in read handler (bsc#1051510).
- ibmvnic: Remove code to request error information (bsc#1104174).
- ibmvnic: Revise RX/TX queue error messages (bsc#1101331).
- ibmvnic: Update firmware error reporting with cause string (bsc#1104174).
- input: elan_i2c - add ACPI ID for lenovo ideapad 330 (bsc#1051510).
- input: elan_i2c - add another ACPI ID for Lenovo Ideapad 330-15AST (bsc#1051510).
- input: i8042 - add Lenovo LaVie Z to the i8042 reset list (bsc#1051510).
- irqchip: brcmstb-l2: Define an irq_pm_shutdown function (bsc#1051510).
- irqchip/gic: Take lock when updating irq type (bsc#1051510).
- irqchip/gic-v3: Change pr_debug message to pr_devel (bsc#1051510).
- irqchip/gic-v3: Fix the driver probe() fail due to disabled GICC entry (bsc#1051510).
- irqchip/gic-v3: Ignore disabled ITS nodes (bsc#1051510).
- irqchip/gic-v3: Use wmb() instead of smb_wmb() in gic_raise_softirq() (bsc#1051510).
- irqchip/qcom: Fix check for spurious interrupts (bsc#1051510).
- irqchip/qcom: Fix u32 comparison with value less than zero (bsc#1051510).
- isofs: fix potential memory leak in mount option parsing (bsc#1101887).
- iwlwifi: add more card IDs for 9000 series (bsc#1051510).
- iwlwifi: pcie: fix race in Rx buffer allocator (bsc#1051510).
- jump_label: Fix concurrent static_key_enable/disable() (bsc#1089343).
- jump_label: Provide hotplug context variants (bsc#1089343).
- jump_label: Reorder hotplug lock and jump_label_lock (bsc#1089343).
- kabi protect bdev_dax_supported (bsc#1103917).
- kabi protect struct ccw_device_private (bsc#1103421).
- kabi/severities: do not complain on hisi_sas internal changes ().
- kabi/severities: ignore x86_kvm_ops; lttng-modules would have to be adjusted in case they depend on this particular change
- kbuild: add '-fno-stack-check' to kernel build options (bsc#1051510).
- kbuild: Handle builtin dtb file names containing hyphens (bsc#1051510).
- kbuild: pkg: use --transform option to prefix paths in tar (bsc#1051510).
- kconfig: display recursive dependency resolution hint just once (bsc#1051510).
- kmemleak: add scheduling point to kmemleak_scan() (bsc#1051510).
- kvm: SVM: Add pause filter threshold ().
- kvm: SVM: Implement pause loop exit logic in SVM ().
- kvm: VMX: Bring the common code to header file ().
- kvm: VMX: Fix the module parameters for vmx ().
- kvm: VMX: Remove ple_window_actual_max ().
- libata: add refcounting to ata_host (git-fixes).
- libata: ensure host is free'd on error exit paths (git-fixes).
- libnvdimm, dimm: fix dpa reservation vs uninitialized label area (git-fixes).
- linvdimm, pmem: Preserve read-only setting for pmem devices (git-fixes).
- media: media-device: fix ioctl function types (bsc#1051510).
- media: rcar_jpu: Add missing clk_disable_unprepare() on error in jpu_open() (bsc#1051510).
- media: saa7164: Fix driver name in debug output (bsc#1051510).
- media: si470x: fix __be16 annotations (bsc#1051510).
- media: siano: get rid of __le32/__le16 cast warnings (bsc#1051510).
- media: tw686x: Fix incorrect vb2_mem_ops GFP flags (bsc#1051510).
- mfd: cros_ec: Fail early if we cannot identify the EC (bsc#1051510).
- mfd: fsl-imx25: Clean up irq settings during removal (bsc#1051510).
- mfd: mxs-lradc: Fix error handling in mxs_lradc_probe() (bsc#1051510).
- misc: pci_endpoint_test: Avoid triggering a BUG() (bsc#1051510).
- mmc: dw_mmc: update actual clock for mmc debugfs (bsc#1051510).
- mmc: pwrseq: Use kmalloc_array instead of stack VLA (bsc#1051510).
- mm: fix __gup_device_huge vs unmap (bsc#1101839).
- mm/kmemleak.c: make cond_resched() rate-limiting more efficient (bsc#1051510).
- mwifiex: correct histogram data with appropriate index (bsc#1051510).
- mwifiex: handle race during mwifiex_usb_disconnect (bsc#1051510).
- nohz: Fix local_timer_softirq_pending() (bsc#1051510).
- nvme: ensure forward progress during Admin passthru (git-fixes).
- nvme-fabrics: Ignore nr_io_queues option for discovery controllers (bsc#1102633).
- nvme: fixup crash on failed discovery (bsc#1103920).
- nvme.h: fixup ANA group descriptor format (bsc#1104111).
- nvme: use hw qid in trace events (bsc#1102633).
- orangefs: report attributes_mask and attributes for statx (bsc#1101832).
- orangefs: set i_size on new symlink (bsc#1101845).
- overflow.h: Add allocation size calculation helpers (bsc#1101116,).
- pci: pciehp: Assume NoCompl+ for Thunderbolt ports (bsc#1051510).
- pci: pciehp: Request control of native hotplug only if supported (bsc#1051510).
- pci: Prevent sysfs disable of device while driver is attached (bsc#1051510).
- pinctrl: at91-pio4: add missing of_node_put (bsc#1051510).
- pinctrl: intel: Add Intel Lewisburg GPIO support ().
- pinctrl: nand: meson-gxl: fix missing data pins (bsc#1051510).
- pmem: only set QUEUE_FLAG_DAX for fsdax mode (bsc#1103917).
- qed*: Add link change count value to ethtool statistics display (bsc#1086314).
- qed: Add qed APIs for PHY module query (bsc#1086314 ).
- qed: Add srq core support for RoCE and iWARP (bsc#1086314 ).
- qede: Add driver callbacks for eeprom module query (bsc#1086314 ).
- qed: fix spelling mistake 'successffuly' -> 'successfully' (bsc#1086314).
- qed: Make some functions static (bsc#1086314).
- qed: remove redundant functions qed_get_cm_pq_idx_rl (bsc#1086314).
- qed: remove redundant functions qed_set_gft_event_id_cm_hdr (bsc#1086314).
- qed: remove redundant pointer 'name' (bsc#1086314).
- qed: use dma_zalloc_coherent instead of allocator/memset (bsc#1086314).
- qed*: Utilize FW 8.37.2.0 (bsc#1086314).
- RDMA/qedr: Fix NULL pointer dereference when running over iWARP without RDMA-CM (bsc#1086314).
- RDMA/qedr: fix spelling mistake: 'adrresses' -> 'addresses' (bsc#1086314).
- RDMA/qedr: fix spelling mistake: 'failes' -> 'fails' (bsc#1086314).
- regulator: pfuze100: add .is_enable() for pfuze100_swb_regulator_ops (bsc#1051510).
- reiserfs: fix buffer overflow with long warning messages (bsc#1101847).
- Revert 'drm/nouveau/drm/therm/fan: add a fallback if no fan control is specified in the vbios' (bsc#1103356).
- s390/cio: clear timer when terminating driver I/O (bsc#1103421).
- s390/cio: fix return code after missing interrupt (bsc#1103421).
- s390/dasd: fix handling of internal requests (bsc#1103421).
- s390/dasd: fix wrongly assigned configuration data (bsc#1103421).
- s390/dasd: prevent prefix I/O error (bsc#1103421).
- s390/eadm: fix CONFIG_BLOCK include dependency (bsc#1103421).
- s390/ipl: ensure loadparm valid flag is set (bsc#1103421).
- s390/pci: do not require AIS facility (bsc#1103421).
- s390/qdio: do not release memory in qdio_setup_irq() (bsc#1103421).
- sc16is7xx: Check for an error when the clock is enabled (bsc#1051510).
- sched/fair: Consider RT/IRQ pressure in capacity_spare_wake() (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Fix find_idlest_group() when local group is not allowed (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Fix usage of find_idlest_group() when no groups are allowed (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Fix usage of find_idlest_group() when the local group is idlest (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Move select_task_rq_fair() slow-path into its own function (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Remove impossible condition from find_idlest_group_cpu() (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Remove unnecessary comparison with -1 (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Spare idle load balancing on nohz_full CPUs (bnc#1101669 optimise numa balancing for fast migrate).
- sched/fair: Use 'unsigned long' for utilization, consistently (bnc#1101669 optimise numa balancing for fast migrate).
- sched/smt: Update sched_smt_present at runtime (bsc#1089343).
- scsi: ata: enhance the definition of SET MAX feature field value ().
- scsi: hisi_sas: add an mechanism to do reset work synchronously ().
- scsi: hisi_sas: add check of device in hisi_sas_task_exec() ().
- scsi: hisi_sas: add internal abort dev in some places ().
- scsi: hisi_sas: Add LED feature for v3 hw ().
- scsi: hisi_sas: add RAS feature for v3 hw ().
- scsi: hisi_sas: add readl poll timeout helper wrappers ().
- scsi: hisi_sas: Add some checks to avoid free'ing a sas_task twice ().
- scsi: hisi_sas: add some print to enhance debugging ().
- scsi: hisi_sas: Add v2 hw force PHY function for internal ATA command ().
- scsi: hisi_sas: add v2 hw port AXI error handling support ().
- scsi: hisi_sas: add v3 hw MODULE_DEVICE_TABLE() ().
- scsi: hisi_sas: add v3 hw suspend and resume ().
- scsi: hisi_sas: allocate slot buffer earlier ().
- scsi: hisi_sas: Change common allocation mode of device id ().
- scsi: hisi_sas: Change frame type for SET MAX commands ().
- scsi: hisi_sas: change ncq process for v3 hw ().
- scsi: hisi_sas: change slot index allocation mode ().
- scsi: hisi_sas: check host frozen before calling 'done' function ().
- scsi: hisi_sas: check IPTT is valid before using it for v3 hw ().
- scsi: hisi_sas: check sas_dev gone earlier in hisi_sas_abort_task() ().
- scsi: hisi_sas: Code cleanup and minor bug fixes ().
- scsi: hisi_sas: config ATA de-reset as an constrained command for v3 hw ().
- scsi: hisi_sas: consolidate command check in hisi_sas_get_ata_protocol() ().
- scsi: hisi_sas: Create a scsi_host_template per HW module ().
- scsi: hisi_sas: delete timer when removing hisi_sas driver ().
- scsi: hisi_sas: do link reset for some CHL_INT2 ints ().
- scsi: hisi_sas: Do not lock DQ for complete task sending ().
- scsi: hisi_sas: dt-bindings: add an property of signal attenuation ().
- scsi: hisi_sas: fix a bug in hisi_sas_dev_gone() ().
- scsi: hisi_sas: fix a typo in hisi_sas_task_prep() ().
- scsi: hisi_sas: fix dma_unmap_sg() parameter ().
- scsi: hisi_sas: fix PI memory size ().
- scsi: hisi_sas: fix return value of hisi_sas_task_prep() ().
- scsi: hisi_sas: Fix return value when get_free_slot() failed ().
- scsi: hisi_sas: fix SAS_QUEUE_FULL problem while running IO ().
- scsi: hisi_sas: fix the issue of link rate inconsistency ().
- scsi: hisi_sas: fix the issue of setting linkrate register ().
- scsi: hisi_sas: improve int_chnl_int_v2_hw() consistency with v3 hw ().
- scsi: hisi_sas: Include TMF elements in struct hisi_sas_slot ().
- scsi: hisi_sas: increase timer expire of internal abort task ().
- scsi: hisi_sas: Init disks after controller reset ().
- scsi: hisi_sas: initialize dq spinlock before use ().
- scsi: hisi_sas: Introduce hisi_sas_phy_set_linkrate() ().
- scsi: hisi_sas: judge result of internal abort ().
- scsi: hisi_sas: make local symbol host_attrs static ().
- scsi: hisi_sas: make return type of prep functions void ().
- scsi: hisi_sas: make SAS address of SATA disks unique ().
- scsi: hisi_sas: Mark PHY as in reset for nexus reset ().
- scsi: hisi_sas: modify hisi_sas_dev_gone() for reset ().
- scsi: hisi_sas: modify some register config for hip08 ().
- scsi: hisi_sas: optimise port id refresh function ().
- scsi: hisi_sas: optimise the usage of DQ locking ().
- scsi: hisi_sas: print device id for errors ().
- scsi: hisi_sas: re-add the lldd_port_deformed() ().
- scsi: hisi_sas: relocate clearing ITCT and freeing device ().
- scsi: hisi_sas: relocate smp sg map ().
- scsi: hisi_sas: Remove depends on HAS_DMA in case of platform dependency ().
- scsi: hisi_sas: remove redundant handling to event95 for v3 ().
- scsi: hisi_sas: remove some unneeded structure members ().
- scsi: hisi_sas: remove unused variable hisi_sas_devices.running_req ().
- scsi: hisi_sas: Reset disks when discovered ().
- scsi: hisi_sas: some optimizations of host controller reset ().
- scsi: hisi_sas: stop controller timer for reset ().
- scsi: hisi_sas: support the property of signal attenuation for v2 hw ().
- scsi: hisi_sas: Terminate STP reject quickly for v2 hw ().
- scsi: hisi_sas: Try wait commands before before controller reset ().
- scsi: hisi_sas: update PHY linkrate after a controller reset ().
- scsi: hisi_sas: update RAS feature for later revision of v3 HW ().
- scsi: hisi_sas: use an general way to delay PHY work ().
- scsi: hisi_sas: Use device lock to protect slot alloc/free ().
- scsi: hisi_sas: use dma_zalloc_coherent() ().
- scsi: hisi_sas: workaround a v3 hw hilink bug ().
- scsi: libsas: defer ata device eh commands to libata ().
- scsi: lpfc: Add Buffer overflow check, when nvme_info larger than PAGE_SIZE (bsc#1102658).
- scsi: lpfc: Correct LCB ACCept payload (bsc#1102658).
- scsi: lpfc: devloss timeout race condition caused null pointer reference (bsc#1102658).
- scsi: lpfc: Fix abort error path for NVMET (bsc#1102658).
- scsi: lpfc: Fix driver crash when re-registering NVME rports (bsc#1102658).
- scsi: lpfc: Fix driver not setting dpp bits correctly in doorbell word (bsc#1102658).
- scsi: lpfc: Fix ELS abort on SLI-3 adapters (bsc#1102658).
- scsi: lpfc: Fix list corruption on the completion queue (bsc#1102658).
- scsi: lpfc: Fix NVME Target crash in defer rcv logic (bsc#1102658).
- scsi: lpfc: Fix panic if driver unloaded when port is offline (bsc#1102658).
- scsi: lpfc: Fix sysfs Speed value on CNA ports (bsc#1102658).
- scsi: lpfc: Limit tracking of tgt queue depth in fast path (bsc#1102658).
- scsi: lpfc: Make PBDE optimizations configurable (bsc#1102658).
- scsi: lpfc: Remove lpfc_enable_pbde as module parameter (bsc#1102658).
- scsi: lpfc: Revise copyright for new company language (bsc#1102658).
- scsi: lpfc: Support duration field in Link Cable Beacon V1 command (bsc#1102658).
- scsi: lpfc: update driver version to 12.0.0.5 (bsc#1102658).
- scsi: lpfc: update driver version to 12.0.0.6 (bsc#1102658).
- scsi: qla2xxx: Avoid double completion of abort command (git-fixes).
- scsi: qla2xxx: Fix driver unload by shutting down chip (git-fixes).
- scsi: qla2xxx: Fix NPIV deletion by calling wait_for_sess_deletion (git-fixes).
- scsi: qla2xxx: Fix NULL pointer dereference for fcport search (git-fixes).
- scsi: qla2xxx: Fix unintialized List head crash (git-fixes).
- scsi: qla2xxx: Return error when TMF returns (git-fixes).
- scsi: smartpqi: add in new supported controllers (bsc#1086274).
- scsi: smartpqi: add inspur advantech ids (bsc#1086274).
- scsi: smartpqi: bump driver version to 1.1.4-130 (bsc#1086274).
- scsi: smartpqi: fix critical ARM issue reading PQI index registers (bsc#1086274).
- scsi: smartpqi: improve error checking for sync requests (bsc#1086274).
- scsi: smartpqi: improve handling for sync requests (bsc#1086274).
- scsi: smartpqi: update driver version (bsc#1086274).
- scsi: smartpqi: workaround fw bug for oq deletion (bsc#1086274).
- sctp: fix the issue that pathmtu may be set lower than MINSEGMENT (git-fixes).
- sctp: introduce sctp_dst_mtu (git-fixes).
- soc: bcm2835: Make !RASPBERRYPI_FIRMWARE dummies return failure (bsc#1051510).
- soc: bcm: raspberrypi-power: Fix use of __packed (bsc#1051510).
- soc: imx: gpc: de-register power domains only if initialized (bsc#1051510).
- soc: imx: gpc: restrict register range for regmap access (bsc#1051510).
- soc: imx: gpcv2: correct PGC offset (bsc#1051510).
- soc: imx: gpcv2: Do not pass static memory as platform data (bsc#1051510).
- soc: imx: gpcv2: fix regulator deferred probe (bsc#1051510).
- soc: mediatek: pwrap: fix compiler errors (bsc#1051510).
- soc: qcom: wcnss_ctrl: Fix increment in NV upload (bsc#1051510).
- soc: rockchip: power-domain: Fix wrong value when power up pd with writemask (bsc#1051510).
- soc/tegra: Fix bad of_node_put() in powergate init (bsc#1051510).
- soc/tegra: flowctrl: Fix error handling (bsc#1051510).
- soc: ti: ti_sci_pm_domains: Populate name for genpd (bsc#1051510).
- soc: zte: Restrict SOC_ZTE to ARCH_ZX or COMPILE_TEST (bsc#1051510).
- spi: bcm2835aux: ensure interrupts are enabled for shared handler (bsc#1051510).
- spi/bcm63xx-hspi: Enable the clock before calling clk_get_rate() (bsc#1051510).
- spi: bcm-qspi: Always read and set BSPI_MAST_N_BOOT_CTRL (bsc#1051510).
- spi: bcm-qspi: Avoid setting MSPI_CDRAM_PCS for spi-nor master (bsc#1051510).
- spi: cadence: Add usleep_range() for cdns_spi_fill_tx_fifo() (bsc#1051510).
- spi: pxa2xx: Allow 64-bit DMA (bsc#1051510).
- spi: pxa2xx: check clk_prepare_enable() return value (bsc#1051510).
- sr: pass down correctly sized SCSI sense buffer (git-fixes).
- staging: ks7010: Use constants from ieee80211_eid instead of literal ints (bsc#1051510).
- staging: speakup: fix wraparound in uaccess length check (bsc#1051510).
- supported.conf: add drivers/md/dm-writecache
- sysrq : fix Show Regs call trace on ARM (bsc#1051510).
- thermal: exynos: fix setting rising_threshold for Exynos5433 (bsc#1051510).
- tty: Fix data race in tty_insert_flip_string_fixed_flag (bsc#1051510).
- typec: tcpm: Fix a msecs vs jiffies bug (bsc#1100132).
- udf: Detect incorrect directory size (bsc#1101891).
- udf: Provide saner default for invalid uid / gid (bsc#1101890).
- Update config files to add CONFIG_DM_WRITECACHE=m
- Update patches.arch/KVM-PPC-Check-if-IOMMU-page-is-contained-in-the-pinn.patch (bsc#1077761, git-fixes, bsc#1103948, bsc#1103949).
- usb: hub: Do not wait for connect state at resume for powered-off ports (bsc#1051510).
- usbip: usbip_detach: Fix memory, udev context and udev leak (bsc#1051510).
- vfs: add the sb_start_intwrite_trylock() helper (bsc#1101841).
- virtio_balloon: fix another race between migration and ballooning (bsc#1051510).
- wlcore: sdio: check for valid platform device data before suspend (bsc#1051510).
- x86/apic: Ignore secondary threads if nosmt=force (bsc#1089343).
- x86/CPU/AMD: Do not check CPUID max ext level before parsing SMP info (bsc#1089343).
- x86/cpu/AMD: Evaluate smp_num_siblings early (bsc#1089343).
- x86/CPU/AMD: Move TOPOEXT reenablement before reading smp_num_siblings (bsc#1089343).
- x86/cpu/AMD: Remove the pointless detect_ht() call (bsc#1089343).
- x86/cpu/common: Provide detect_ht_early() (bsc#1089343).
- x86/cpu/intel: Evaluate smp_num_siblings early (bsc#1089343).
- x86/cpu: Remove the pointless CPU printout (bsc#1089343).
- x86/cpu/topology: Provide detect_extended_topology_early() (bsc#1089343).
- x86/KVM/VMX: Add module argument for L1TF mitigation.
- x86/smp: Provide topology_is_primary_thread() (bsc#1089343).
- x86/topology: Provide topology_smt_supported() (bsc#1089343).
- x86: Treat R_X86_64_PLT32 as R_X86_64_PC32 (binutils_2.31).
- xfs: catch inode allocation state mismatch corruption (bsc#1104211).
- xfs: prevent creating negative-sized file via INSERT_RANGE (bsc#1101833).
Patchnames: SUSE-SLE-Module-Basesystem-15-2018-1614,SUSE-SLE-Module-Development-Tools-15-2018-1614,SUSE-SLE-Module-Legacy-15-2018-1614,SUSE-SLE-Product-HA-15-2018-1614,SUSE-SLE-Product-WE-15-2018-1614
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.7 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.6 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
143 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-3620: Local attackers on baremetal systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data. (bnc#1087081).\n- CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data, even from other virtual machines or the host system. (bnc#1089343).\n- CVE-2018-5391 aka \u0027FragmentSmack\u0027: A flaw in the IP packet reassembly could be used by remote attackers to consume lots of CPU time (bnc#1103097).\n- CVE-2018-10876: A flaw was found in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image. (bnc#1099811)\n- CVE-2018-10877: The ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image. (bnc#1099846)\n- CVE-2018-10878: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image. (bnc#1099813)\n- CVE-2018-10879: A flaw was found in the ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image. (bnc#1099844)\n- CVE-2018-10880: Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service. (bnc#1099845)\n- CVE-2018-10881: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099864)\n- CVE-2018-10882: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image. (bnc#1099849)\n- CVE-2018-10883: A flaw was found in the ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099863)\n\nThe following non-security bugs were fixed:\n\n- acpi / lpss: Only call pwm_add_table() for Bay Trail PWM if PMIC HRV is 2 (bsc#1051510).\n- af_key: Always verify length of provided sadb_key (bsc#1051510).\n- af_key: fix buffer overread in parse_exthdrs() (bsc#1051510).\n- af_key: fix buffer overread in verify_address_len() (bsc#1051510).\n- afs: Fix directory permissions check (bsc#1101828).\n- agp: uninorth: make two functions static (bsc#1051510).\n- alsa: emu10k1: add error handling for snd_ctl_add (bsc#1051510).\n- alsa: emu10k1: Rate-limit error messages about page errors (bsc#1051510).\n- alsa: fm801: add error handling for snd_ctl_add (bsc#1051510).\n- alsa: usb-audio: Apply rate limit to warning messages in URB complete callback (bsc#1051510).\n- arm64: Correct type for PUD macros (bsc#1103723).\n- arm64: Disable unhandled signal log messages by default (bsc#1103724).\n- arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bsc#1103725).\n- arm64: mm: Fix set_memory_valid() declaration (bsc#1103726).\n- arm64: perf: correct PMUVer probing (bsc#1103727).\n- arm64: ptrace: Avoid setting compat FPR to garbage if get_user fails (bsc#1103728).\n- arm64: spinlock: Fix theoretical trylock() A-B-A with LSE atomics (bsc#1103729).\n- arm64: vdso: fix clock_getres for 4GiB-aligned res (bsc#1103730).\n- arm: 8715/1: add a private asm/unaligned.h (bsc#1051510).\n- arm: 8720/1: ensure dump_instr() checks addr_limit (bsc#1051510).\n- arm: 8721/1: mm: dump: check hardware RO bit for LPAE (bsc#1051510).\n- arm: 8722/1: mm: make STRICT_KERNEL_RWX effective for LPAE (bsc#1051510).\n- arm: 8731/1: Fix csum_partial_copy_from_user() stack mismatch (bsc#1051510).\n- arm: 8743/1: bL_switcher: add MODULE_LICENSE tag (bsc#1051510).\n- arm: 8746/1: vfp: Go back to clearing vfp_current_hw_state[] (bsc#1051510).\n- arm: 8748/1: mm: Define vdso_start, vdso_end as array (bsc#1051510).\n- arm: 8753/1: decompressor: add a missing parameter to the addruart macro (bsc#1051510).\n- arm: 8758/1: decompressor: restore r1 and r2 just before jumping to the kernel (bsc#1051510).\n- arm: 8764/1: kgdb: fix NUMREGBYTES so that gdb_regs[] is the correct size (bsc#1051510).\n- arm: 8769/1: kprobes: Fix to use get_kprobe_ctlblk after irq-disabed (bsc#1051510).\n- arm: 8770/1: kprobes: Prohibit probing on optimized_callback (bsc#1051510).\n- arm: 8771/1: kprobes: Prohibit kprobes on do_undefinstr (bsc#1051510).\n- arm: 8772/1: kprobes: Prohibit kprobes on get_user functions (bsc#1051510).\n- arm: AM33xx: PRM: Remove am33xx_pwrdm_read_prev_pwrst function (bsc#1051510).\n- arm: amba: Fix race condition with driver_override (bsc#1051510).\n- arm: amba: Fix wrong indentation in driver_override_store() (bsc#1051510).\n- arm: amba: Make driver_override output consistent with other buses (bsc#1051510).\n- arm: at91: do not select CONFIG_ARM_CPU_SUSPEND for old platforms (bsc#1051510).\n- arm: avoid faulting on qemu (bsc#1051510).\n- arm: BUG if jumping to usermode address in kernel mode (bsc#1051510).\n- arm-ccn: perf: Prevent module unload while PMU is in use (bsc#1051510).\n- arm: davinci: Add dma_mask to dm365\u0027s eDMA device (bsc#1051510).\n- arm: davinci: board-da830-evm: fix GPIO lookup for MMC/SD (bsc#1051510).\n- arm: davinci: board-da850-evm: fix GPIO lookup for MMC/SD (bsc#1051510).\n- arm: davinci: board-da850-evm: fix WP pin polarity for MMC/SD (bsc#1051510).\n- arm: davinci: board-dm355-evm: fix broken networking (bsc#1051510).\n- arm: davinci: board-dm646x-evm: pass correct I2C adapter id for VPIF (bsc#1051510).\n- arm: davinci: board-dm646x-evm: set VPIF capture card name (bsc#1051510).\n- arm: davinci: board-omapl138-hawk: fix GPIO numbers for MMC/SD lookup (bsc#1051510).\n- arm: davinci: dm646x: fix timer interrupt generation (bsc#1051510).\n- arm: davinci: fix mmc entries in dm365\u0027s dma_slave_map (bsc#1051510).\n- arm: davinci: fix the GPIO lookup for omapl138-hawk (bsc#1051510).\n- arm: davinci: Use platform_device_register_full() to create pdev for dm365\u0027s eDMA (bsc#1051510).\n- arm: DRA722: remove redundant definition of 1.0 device (bsc#1051510).\n- arm: fix return value of parse_cpu_capacity (bsc#1051510).\n- arm: kexec: fix failure to boot crash kernel (bsc#1051510).\n- arm: kexec: fix kdump register saving on panic() (bsc#1051510).\n- arm: keystone: fix platform_domain_notifier array overrun (bsc#1051510).\n- arm: kvm: fix building with gcc-8 (bsc#1051510).\n- arm: multi_v7_defconfig: Replace DRM_RCAR_HDMI by generic bridge options (bsc#1051510).\n- arm: multi_v7_defconfig: Replace SND_SOC_RSRC_CARD by SND_SIMPLE_SCU_CARD (bsc#1051510).\n- arm: mvebu: Fix broken PL310_ERRATA_753970 selects (bsc#1051510).\n- arm: OMAP1: clock: Fix debugfs_create_*() usage (bsc#1051510).\n- arm: OMAP2+: Fix SRAM virt to phys translation for save_secure_ram_context (bsc#1051510).\n- arm: omap2: hide omap3_save_secure_ram on non-OMAP3 builds (bsc#1051510).\n- arm: OMAP2+: omap_device: drop broken RPM status update from suspend_noirq (bsc#1051510).\n- arm: OMAP2+: powerdomain: use raw_smp_processor_id() for trace (bsc#1051510).\n- arm: OMAP2+: timer: fix a kmemleak caused in omap_get_timer_dt (bsc#1051510).\n- arm: OMAP3: Fix prm wake interrupt for resume (bsc#1051510).\n- arm: OMAP3: hwmod_data: add missing module_offs for MMC3 (bsc#1051510).\n- arm: OMAP3+: PRM: fix of_irq_get() result check (bsc#1051510).\n- arm: OMAP4+: PRM: fix of_irq_get() result checks (bsc#1051510).\n- arm: OMAP: Fix dmtimer init for omap1 (bsc#1051510).\n- arm: OMAP: Fix SRAM W+X mapping (bsc#1051510).\n- arm: orion5x: Revert commit 4904dbda41c8 (bsc#1051510).\n- arm: orion: fix orion_ge00_switch_board_info initialization (bsc#1051510).\n- arm: pxa: select both FB and FB_W100 for eseries (bsc#1051510).\n- arm: pxa/tosa-bt: add MODULE_LICENSE tag (bsc#1051510).\n- arm: remove wrong CONFIG_PROC_SYSCTL ifdef (bsc#1051510).\n- arm: s3c24xx: Fix NAND ECC mode for mini2440 board (bsc#1051510).\n- arm: shmobile: defconfig: Enable missing PCIE_RCAR dependency (bsc#1051510).\n- arm: shmobile: defconfig: Replace DRM_RCAR_HDMI by generic bridge options (bsc#1051510).\n- arm: shmobile: defconfig: Replace SND_SOC_RSRC_CARD by SND_SIMPLE_SCU_CARD (bsc#1051510).\n- arm: shmobile: defconfig: Replace USB_XHCI_RCAR by USB_XHCI_PLATFORM (bsc#1051510).\n- arm: shmobile: rcar-gen2: Fix deadlock in regulator quirk (bsc#1051510).\n- arm: socfpga_defconfig: Remove QSPI Sector 4K size force (bsc#1051510).\n- arm: spear13xx: Fix dmas cells (bsc#1051510).\n- arm: sunxi_defconfig: Enable CMA (bsc#1051510).\n- arm: sunxi: fix the core number of V3s in sunxi README (bsc#1051510).\n- asoc: dpcm: fix BE dai not hw_free and shutdown (bsc#1051510).\n- asoc: topology: Add missing clock gating parameter when parsing hw_configs (bsc#1051510).\n- asoc: topology: Fix bclk and fsync inversion in set_link_hw_format() (bsc#1051510).\n- ata: do not schedule hot plug if it is a sas host ().\n- ath: Add regulatory mapping for APL13_WORLD (bsc#1051510).\n- ath: Add regulatory mapping for APL2_FCCA (bsc#1051510).\n- ath: Add regulatory mapping for Bahamas (bsc#1051510).\n- ath: Add regulatory mapping for Bermuda (bsc#1051510).\n- ath: Add regulatory mapping for ETSI8_WORLD (bsc#1051510).\n- ath: Add regulatory mapping for FCC3_ETSIC (bsc#1051510).\n- ath: Add regulatory mapping for Serbia (bsc#1051510).\n- ath: Add regulatory mapping for Tanzania (bsc#1051510).\n- ath: Add regulatory mapping for Uganda (bsc#1051510).\n- audit: fix potential null dereference \u0027context-\u003emodule.name\u0027 (bsc#1051510).\n- backlight: pwm_bl: Do not use GPIOF_* with gpiod_get_direction (bsc#1051510).\n- bdi: Move cgroup bdi_writeback to a dedicated low concurrency workqueue (bsc#1101867).\n- befs_lookup(): use d_splice_alias() (bsc#1101844).\n- block: Fix transfer when chunk sectors exceeds max (bsc#1101874).\n- bluetooth: btusb: Add a new Realtek 8723DE ID 2ff8:b011 (bsc#1051510).\n- bluetooth: btusb: add ID for LiteOn 04ca:301a (bsc#1051510).\n- bluetooth: hci_qca: Fix \u0027Sleep inside atomic section\u0027 warning (bsc#1051510).\n- branch-check: fix long-\u003eint truncation when profiling branches (bsc#1101116,).\n- brcmfmac: Add support for bcm43364 wireless chipset (bsc#1051510).\n- cachefiles: Fix missing clear of the CACHEFILES_OBJECT_ACTIVE flag (bsc#1099858).\n- cachefiles: Fix refcounting bug in backing-file read monitoring (bsc#1099858).\n- cachefiles: Wait rather than BUG\u0027ing on \u0027Unexpected object collision\u0027 (bsc#1099858).\n- can: dev: increase bus-off message severity (bsc#1051510).\n- can: ems_usb: Fix memory leak on ems_usb_disconnect() (bsc#1051510).\n- can: m_can: change comparison to bitshift when dealing with a mask (bsc#1051510).\n- cdrom: do not call check_disk_change() inside cdrom_open() (bsc#1101872).\n- clk: at91: fix clk-generated compilation (bsc#1051510).\n- clk: renesas: cpg-mssr: Stop using printk format %pCr (bsc#1051510).\n- coccinelle: fix parallel build with CHECK=scripts/coccicheck (bsc#1051510).\n- compiler.h: enable builtin overflow checkers and add fallback code (bsc#1101116,).\n- cpufreq: intel_pstate: Limit the scope of HWP dynamic boost platforms (bsc#1066110).\n- cpu/hotplug: Make bringup/teardown of smp threads symmetric (bsc#1089343).\n- cpu/hotplug: Provide knobs to control SMT (bsc#1089343).\n- cpu/hotplug: Split do_cpu_down() (bsc#1089343).\n- crypto: authenc - do not leak pointers to authenc keys (bsc#1051510).\n- crypto: authencesn - do not leak pointers to authenc keys (bsc#1051510).\n- crypto: padlock-aes - Fix Nano workaround data corruption (bsc#1051510).\n- delayacct: fix crash in delayacct_blkio_end() after delayacct init failure (bsc#1104066).\n- dm: add writecache target (bsc#1101116,).\n- dm: prevent DAX mounts if not supported (bsc#1103917).\n- dm writecache: support optional offset for start of device (bsc#1101116,).\n- dm writecache: use 2-factor allocator arguments (bsc#1101116,).\n- doc: Add vendor prefix for Kieback \u0026 Peter GmbH (bsc#1051510).\n- drivers: soc: sunxi: fix error processing on base address when claiming (bsc#1051510).\n- drm: Add DP PSR2 sink enable bit (bsc#1051510).\n- drm/amdgpu: Remove VRAM from shared bo domains (bsc#1051510).\n- drm/atomic: Check old_plane_state-\u003ecrtc in drm_atomic_helper_async_check() (bsc#1051510).\n- drm/atomic: Handling the case when setting old crtc for plane (bsc#1051510).\n- drm/atomic-helper: Drop plane-\u003efb references only for drm_atomic_helper_shutdown() (bsc#1051510).\n- drm/atomic: Initialize variables in drm_atomic_helper_async_check() to make gcc happy (bsc#1051510).\n- drm/atomic: Make async plane update checks work as intended, v2 (bsc#1051510).\n- drm/atomic: Make atomic helper track newly assigned planes correctly, v2 (bsc#1051510).\n- drm/atomic: Make atomic iterators less surprising (bsc#1051510).\n- drm/dp/mst: Fix off-by-one typo when dump payload table (bsc#1051510).\n- drm/gma500: fix psb_intel_lvds_mode_valid()\u0027s return type (bsc#1051510).\n- drm/nouveau/fifo/gk104-: poll for runlist update completion (bsc#1051510).\n- drm/radeon: fix mode_valid\u0027s return type (bsc#1051510).\n- drm: re-enable error handling (bsc#1051510).\n- drm/vc4: Reset -\u003e{x, y}_scaling[1] when dealing with uniplanar formats (bsc#1051510).\n- Enable / support pinctrl-lewisburg ()\n- ext2: fix a block leak (bsc#1101875).\n- ext4: add more mount time checks of the superblock (bsc#1101900).\n- ext4: bubble errors from ext4_find_inline_data_nolock() up to ext4_iget() (bsc#1101896).\n- ext4: check superblock mapped prior to committing (bsc#1101902).\n- ext4: do not update s_last_mounted of a frozen fs (bsc#1101841).\n- ext4: factor out helper ext4_sample_last_mounted() (bsc#1101841).\n- ext4: fix check to prevent initializing reserved inodes (bsc#1104319).\n- ext4: fix fencepost error in check for inode count overflow during resize (bsc#1101853).\n- ext4: include the illegal physical block in the bad map ext4_error msg (bsc#1101903).\n- ext4: report delalloc reserve as non-free in statfs for project quota (bsc#1101843).\n- ext4: update mtime in ext4_punch_hole even if no blocks are released (bsc#1101895).\n- f2fs: call unlock_new_inode() before d_instantiate() (bsc#1101837).\n- fix io_destroy()/aio_complete() race (bsc#1101852).\n- Force log to disk before reading the AGF during a fstrim (bsc#1101893).\n- fs: allow per-device dax status checking for filesystems (bsc#1103917).\n- fscache: Allow cancelled operations to be enqueued (bsc#1099858).\n- fscache: Fix hanging wait on page discarded by writeback (bsc#1101885).\n- fscache: Fix reference overput in fscache_attach_object() error handling (bsc#1099858).\n- fs: clear writeback errors in inode_init_always (bsc#1101882).\n- fs: do not scan the inode cache before SB_BORN is set (bsc#1101883).\n- genirq: Check __free_irq() return value for NULL (bsc#1103517).\n- hid: hid-plantronics: Re-resend Update to map button for PTT products (bsc#1051510).\n- hid: i2c-hid: check if device is there before really probing (bsc#1051510).\n- hippi: Fix a Fix a possible sleep-in-atomic bug in rr_close (bsc#1051510).\n- hv_netvsc: Ensure correct teardown message sequence order ().\n- hv/netvsc: fix handling of fallback to single queue mode ().\n- hv_netvsc: Fix net device attach on older Windows hosts ().\n- hv_netvsc: set master device (bsc#1051979).\n- hv_netvsc: Split netvsc_revoke_buf() and netvsc_teardown_gpadl() ().\n- hv_netvsc: split sub-channel setup into async and sync ().\n- hv_netvsc: Use Windows version instead of NVSP version on GPAD teardown ().\n- ibmasm: do not write out of bounds in read handler (bsc#1051510).\n- ibmvnic: Remove code to request error information (bsc#1104174).\n- ibmvnic: Revise RX/TX queue error messages (bsc#1101331).\n- ibmvnic: Update firmware error reporting with cause string (bsc#1104174).\n- input: elan_i2c - add ACPI ID for lenovo ideapad 330 (bsc#1051510).\n- input: elan_i2c - add another ACPI ID for Lenovo Ideapad 330-15AST (bsc#1051510).\n- input: i8042 - add Lenovo LaVie Z to the i8042 reset list (bsc#1051510).\n- irqchip: brcmstb-l2: Define an irq_pm_shutdown function (bsc#1051510).\n- irqchip/gic: Take lock when updating irq type (bsc#1051510).\n- irqchip/gic-v3: Change pr_debug message to pr_devel (bsc#1051510).\n- irqchip/gic-v3: Fix the driver probe() fail due to disabled GICC entry (bsc#1051510).\n- irqchip/gic-v3: Ignore disabled ITS nodes (bsc#1051510).\n- irqchip/gic-v3: Use wmb() instead of smb_wmb() in gic_raise_softirq() (bsc#1051510).\n- irqchip/qcom: Fix check for spurious interrupts (bsc#1051510).\n- irqchip/qcom: Fix u32 comparison with value less than zero (bsc#1051510).\n- isofs: fix potential memory leak in mount option parsing (bsc#1101887).\n- iwlwifi: add more card IDs for 9000 series (bsc#1051510).\n- iwlwifi: pcie: fix race in Rx buffer allocator (bsc#1051510).\n- jump_label: Fix concurrent static_key_enable/disable() (bsc#1089343).\n- jump_label: Provide hotplug context variants (bsc#1089343).\n- jump_label: Reorder hotplug lock and jump_label_lock (bsc#1089343).\n- kabi protect bdev_dax_supported (bsc#1103917).\n- kabi protect struct ccw_device_private (bsc#1103421).\n- kabi/severities: do not complain on hisi_sas internal changes ().\n- kabi/severities: ignore x86_kvm_ops; lttng-modules would have to be adjusted in case they depend on this particular change\n- kbuild: add \u0027-fno-stack-check\u0027 to kernel build options (bsc#1051510).\n- kbuild: Handle builtin dtb file names containing hyphens (bsc#1051510).\n- kbuild: pkg: use --transform option to prefix paths in tar (bsc#1051510).\n- kconfig: display recursive dependency resolution hint just once (bsc#1051510).\n- kmemleak: add scheduling point to kmemleak_scan() (bsc#1051510).\n- kvm: SVM: Add pause filter threshold ().\n- kvm: SVM: Implement pause loop exit logic in SVM ().\n- kvm: VMX: Bring the common code to header file ().\n- kvm: VMX: Fix the module parameters for vmx ().\n- kvm: VMX: Remove ple_window_actual_max ().\n- libata: add refcounting to ata_host (git-fixes).\n- libata: ensure host is free\u0027d on error exit paths (git-fixes).\n- libnvdimm, dimm: fix dpa reservation vs uninitialized label area (git-fixes).\n- linvdimm, pmem: Preserve read-only setting for pmem devices (git-fixes).\n- media: media-device: fix ioctl function types (bsc#1051510).\n- media: rcar_jpu: Add missing clk_disable_unprepare() on error in jpu_open() (bsc#1051510).\n- media: saa7164: Fix driver name in debug output (bsc#1051510).\n- media: si470x: fix __be16 annotations (bsc#1051510).\n- media: siano: get rid of __le32/__le16 cast warnings (bsc#1051510).\n- media: tw686x: Fix incorrect vb2_mem_ops GFP flags (bsc#1051510).\n- mfd: cros_ec: Fail early if we cannot identify the EC (bsc#1051510).\n- mfd: fsl-imx25: Clean up irq settings during removal (bsc#1051510).\n- mfd: mxs-lradc: Fix error handling in mxs_lradc_probe() (bsc#1051510).\n- misc: pci_endpoint_test: Avoid triggering a BUG() (bsc#1051510).\n- mmc: dw_mmc: update actual clock for mmc debugfs (bsc#1051510).\n- mmc: pwrseq: Use kmalloc_array instead of stack VLA (bsc#1051510).\n- mm: fix __gup_device_huge vs unmap (bsc#1101839).\n- mm/kmemleak.c: make cond_resched() rate-limiting more efficient (bsc#1051510).\n- mwifiex: correct histogram data with appropriate index (bsc#1051510).\n- mwifiex: handle race during mwifiex_usb_disconnect (bsc#1051510).\n- nohz: Fix local_timer_softirq_pending() (bsc#1051510).\n- nvme: ensure forward progress during Admin passthru (git-fixes).\n- nvme-fabrics: Ignore nr_io_queues option for discovery controllers (bsc#1102633).\n- nvme: fixup crash on failed discovery (bsc#1103920).\n- nvme.h: fixup ANA group descriptor format (bsc#1104111).\n- nvme: use hw qid in trace events (bsc#1102633).\n- orangefs: report attributes_mask and attributes for statx (bsc#1101832).\n- orangefs: set i_size on new symlink (bsc#1101845).\n- overflow.h: Add allocation size calculation helpers (bsc#1101116,).\n- pci: pciehp: Assume NoCompl+ for Thunderbolt ports (bsc#1051510).\n- pci: pciehp: Request control of native hotplug only if supported (bsc#1051510).\n- pci: Prevent sysfs disable of device while driver is attached (bsc#1051510).\n- pinctrl: at91-pio4: add missing of_node_put (bsc#1051510).\n- pinctrl: intel: Add Intel Lewisburg GPIO support ().\n- pinctrl: nand: meson-gxl: fix missing data pins (bsc#1051510).\n- pmem: only set QUEUE_FLAG_DAX for fsdax mode (bsc#1103917).\n- qed*: Add link change count value to ethtool statistics display (bsc#1086314).\n- qed: Add qed APIs for PHY module query (bsc#1086314 ).\n- qed: Add srq core support for RoCE and iWARP (bsc#1086314 ).\n- qede: Add driver callbacks for eeprom module query (bsc#1086314 ).\n- qed: fix spelling mistake \u0027successffuly\u0027 -\u003e \u0027successfully\u0027 (bsc#1086314).\n- qed: Make some functions static (bsc#1086314).\n- qed: remove redundant functions qed_get_cm_pq_idx_rl (bsc#1086314).\n- qed: remove redundant functions qed_set_gft_event_id_cm_hdr (bsc#1086314).\n- qed: remove redundant pointer \u0027name\u0027 (bsc#1086314).\n- qed: use dma_zalloc_coherent instead of allocator/memset (bsc#1086314).\n- qed*: Utilize FW 8.37.2.0 (bsc#1086314).\n- RDMA/qedr: Fix NULL pointer dereference when running over iWARP without RDMA-CM (bsc#1086314).\n- RDMA/qedr: fix spelling mistake: \u0027adrresses\u0027 -\u003e \u0027addresses\u0027 (bsc#1086314).\n- RDMA/qedr: fix spelling mistake: \u0027failes\u0027 -\u003e \u0027fails\u0027 (bsc#1086314).\n- regulator: pfuze100: add .is_enable() for pfuze100_swb_regulator_ops (bsc#1051510).\n- reiserfs: fix buffer overflow with long warning messages (bsc#1101847).\n- Revert \u0027drm/nouveau/drm/therm/fan: add a fallback if no fan control is specified in the vbios\u0027 (bsc#1103356).\n- s390/cio: clear timer when terminating driver I/O (bsc#1103421).\n- s390/cio: fix return code after missing interrupt (bsc#1103421).\n- s390/dasd: fix handling of internal requests (bsc#1103421).\n- s390/dasd: fix wrongly assigned configuration data (bsc#1103421).\n- s390/dasd: prevent prefix I/O error (bsc#1103421).\n- s390/eadm: fix CONFIG_BLOCK include dependency (bsc#1103421).\n- s390/ipl: ensure loadparm valid flag is set (bsc#1103421).\n- s390/pci: do not require AIS facility (bsc#1103421).\n- s390/qdio: do not release memory in qdio_setup_irq() (bsc#1103421).\n- sc16is7xx: Check for an error when the clock is enabled (bsc#1051510).\n- sched/fair: Consider RT/IRQ pressure in capacity_spare_wake() (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Fix find_idlest_group() when local group is not allowed (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Fix usage of find_idlest_group() when no groups are allowed (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Fix usage of find_idlest_group() when the local group is idlest (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Move select_task_rq_fair() slow-path into its own function (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Remove impossible condition from find_idlest_group_cpu() (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Remove unnecessary comparison with -1 (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Spare idle load balancing on nohz_full CPUs (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/fair: Use \u0027unsigned long\u0027 for utilization, consistently (bnc#1101669 optimise numa balancing for fast migrate).\n- sched/smt: Update sched_smt_present at runtime (bsc#1089343).\n- scsi: ata: enhance the definition of SET MAX feature field value ().\n- scsi: hisi_sas: add an mechanism to do reset work synchronously ().\n- scsi: hisi_sas: add check of device in hisi_sas_task_exec() ().\n- scsi: hisi_sas: add internal abort dev in some places ().\n- scsi: hisi_sas: Add LED feature for v3 hw ().\n- scsi: hisi_sas: add RAS feature for v3 hw ().\n- scsi: hisi_sas: add readl poll timeout helper wrappers ().\n- scsi: hisi_sas: Add some checks to avoid free\u0027ing a sas_task twice ().\n- scsi: hisi_sas: add some print to enhance debugging ().\n- scsi: hisi_sas: Add v2 hw force PHY function for internal ATA command ().\n- scsi: hisi_sas: add v2 hw port AXI error handling support ().\n- scsi: hisi_sas: add v3 hw MODULE_DEVICE_TABLE() ().\n- scsi: hisi_sas: add v3 hw suspend and resume ().\n- scsi: hisi_sas: allocate slot buffer earlier ().\n- scsi: hisi_sas: Change common allocation mode of device id ().\n- scsi: hisi_sas: Change frame type for SET MAX commands ().\n- scsi: hisi_sas: change ncq process for v3 hw ().\n- scsi: hisi_sas: change slot index allocation mode ().\n- scsi: hisi_sas: check host frozen before calling \u0027done\u0027 function ().\n- scsi: hisi_sas: check IPTT is valid before using it for v3 hw ().\n- scsi: hisi_sas: check sas_dev gone earlier in hisi_sas_abort_task() ().\n- scsi: hisi_sas: Code cleanup and minor bug fixes ().\n- scsi: hisi_sas: config ATA de-reset as an constrained command for v3 hw ().\n- scsi: hisi_sas: consolidate command check in hisi_sas_get_ata_protocol() ().\n- scsi: hisi_sas: Create a scsi_host_template per HW module ().\n- scsi: hisi_sas: delete timer when removing hisi_sas driver ().\n- scsi: hisi_sas: do link reset for some CHL_INT2 ints ().\n- scsi: hisi_sas: Do not lock DQ for complete task sending ().\n- scsi: hisi_sas: dt-bindings: add an property of signal attenuation ().\n- scsi: hisi_sas: fix a bug in hisi_sas_dev_gone() ().\n- scsi: hisi_sas: fix a typo in hisi_sas_task_prep() ().\n- scsi: hisi_sas: fix dma_unmap_sg() parameter ().\n- scsi: hisi_sas: fix PI memory size ().\n- scsi: hisi_sas: fix return value of hisi_sas_task_prep() ().\n- scsi: hisi_sas: Fix return value when get_free_slot() failed ().\n- scsi: hisi_sas: fix SAS_QUEUE_FULL problem while running IO ().\n- scsi: hisi_sas: fix the issue of link rate inconsistency ().\n- scsi: hisi_sas: fix the issue of setting linkrate register ().\n- scsi: hisi_sas: improve int_chnl_int_v2_hw() consistency with v3 hw ().\n- scsi: hisi_sas: Include TMF elements in struct hisi_sas_slot ().\n- scsi: hisi_sas: increase timer expire of internal abort task ().\n- scsi: hisi_sas: Init disks after controller reset ().\n- scsi: hisi_sas: initialize dq spinlock before use ().\n- scsi: hisi_sas: Introduce hisi_sas_phy_set_linkrate() ().\n- scsi: hisi_sas: judge result of internal abort ().\n- scsi: hisi_sas: make local symbol host_attrs static ().\n- scsi: hisi_sas: make return type of prep functions void ().\n- scsi: hisi_sas: make SAS address of SATA disks unique ().\n- scsi: hisi_sas: Mark PHY as in reset for nexus reset ().\n- scsi: hisi_sas: modify hisi_sas_dev_gone() for reset ().\n- scsi: hisi_sas: modify some register config for hip08 ().\n- scsi: hisi_sas: optimise port id refresh function ().\n- scsi: hisi_sas: optimise the usage of DQ locking ().\n- scsi: hisi_sas: print device id for errors ().\n- scsi: hisi_sas: re-add the lldd_port_deformed() ().\n- scsi: hisi_sas: relocate clearing ITCT and freeing device ().\n- scsi: hisi_sas: relocate smp sg map ().\n- scsi: hisi_sas: Remove depends on HAS_DMA in case of platform dependency ().\n- scsi: hisi_sas: remove redundant handling to event95 for v3 ().\n- scsi: hisi_sas: remove some unneeded structure members ().\n- scsi: hisi_sas: remove unused variable hisi_sas_devices.running_req ().\n- scsi: hisi_sas: Reset disks when discovered ().\n- scsi: hisi_sas: some optimizations of host controller reset ().\n- scsi: hisi_sas: stop controller timer for reset ().\n- scsi: hisi_sas: support the property of signal attenuation for v2 hw ().\n- scsi: hisi_sas: Terminate STP reject quickly for v2 hw ().\n- scsi: hisi_sas: Try wait commands before before controller reset ().\n- scsi: hisi_sas: update PHY linkrate after a controller reset ().\n- scsi: hisi_sas: update RAS feature for later revision of v3 HW ().\n- scsi: hisi_sas: use an general way to delay PHY work ().\n- scsi: hisi_sas: Use device lock to protect slot alloc/free ().\n- scsi: hisi_sas: use dma_zalloc_coherent() ().\n- scsi: hisi_sas: workaround a v3 hw hilink bug ().\n- scsi: libsas: defer ata device eh commands to libata ().\n- scsi: lpfc: Add Buffer overflow check, when nvme_info larger than PAGE_SIZE (bsc#1102658).\n- scsi: lpfc: Correct LCB ACCept payload (bsc#1102658).\n- scsi: lpfc: devloss timeout race condition caused null pointer reference (bsc#1102658).\n- scsi: lpfc: Fix abort error path for NVMET (bsc#1102658).\n- scsi: lpfc: Fix driver crash when re-registering NVME rports (bsc#1102658).\n- scsi: lpfc: Fix driver not setting dpp bits correctly in doorbell word (bsc#1102658).\n- scsi: lpfc: Fix ELS abort on SLI-3 adapters (bsc#1102658).\n- scsi: lpfc: Fix list corruption on the completion queue (bsc#1102658).\n- scsi: lpfc: Fix NVME Target crash in defer rcv logic (bsc#1102658).\n- scsi: lpfc: Fix panic if driver unloaded when port is offline (bsc#1102658).\n- scsi: lpfc: Fix sysfs Speed value on CNA ports (bsc#1102658).\n- scsi: lpfc: Limit tracking of tgt queue depth in fast path (bsc#1102658).\n- scsi: lpfc: Make PBDE optimizations configurable (bsc#1102658).\n- scsi: lpfc: Remove lpfc_enable_pbde as module parameter (bsc#1102658).\n- scsi: lpfc: Revise copyright for new company language (bsc#1102658).\n- scsi: lpfc: Support duration field in Link Cable Beacon V1 command (bsc#1102658).\n- scsi: lpfc: update driver version to 12.0.0.5 (bsc#1102658).\n- scsi: lpfc: update driver version to 12.0.0.6 (bsc#1102658).\n- scsi: qla2xxx: Avoid double completion of abort command (git-fixes).\n- scsi: qla2xxx: Fix driver unload by shutting down chip (git-fixes).\n- scsi: qla2xxx: Fix NPIV deletion by calling wait_for_sess_deletion (git-fixes).\n- scsi: qla2xxx: Fix NULL pointer dereference for fcport search (git-fixes).\n- scsi: qla2xxx: Fix unintialized List head crash (git-fixes).\n- scsi: qla2xxx: Return error when TMF returns (git-fixes).\n- scsi: smartpqi: add in new supported controllers (bsc#1086274).\n- scsi: smartpqi: add inspur advantech ids (bsc#1086274).\n- scsi: smartpqi: bump driver version to 1.1.4-130 (bsc#1086274).\n- scsi: smartpqi: fix critical ARM issue reading PQI index registers (bsc#1086274).\n- scsi: smartpqi: improve error checking for sync requests (bsc#1086274).\n- scsi: smartpqi: improve handling for sync requests (bsc#1086274).\n- scsi: smartpqi: update driver version (bsc#1086274).\n- scsi: smartpqi: workaround fw bug for oq deletion (bsc#1086274).\n- sctp: fix the issue that pathmtu may be set lower than MINSEGMENT (git-fixes).\n- sctp: introduce sctp_dst_mtu (git-fixes).\n- soc: bcm2835: Make !RASPBERRYPI_FIRMWARE dummies return failure (bsc#1051510).\n- soc: bcm: raspberrypi-power: Fix use of __packed (bsc#1051510).\n- soc: imx: gpc: de-register power domains only if initialized (bsc#1051510).\n- soc: imx: gpc: restrict register range for regmap access (bsc#1051510).\n- soc: imx: gpcv2: correct PGC offset (bsc#1051510).\n- soc: imx: gpcv2: Do not pass static memory as platform data (bsc#1051510).\n- soc: imx: gpcv2: fix regulator deferred probe (bsc#1051510).\n- soc: mediatek: pwrap: fix compiler errors (bsc#1051510).\n- soc: qcom: wcnss_ctrl: Fix increment in NV upload (bsc#1051510).\n- soc: rockchip: power-domain: Fix wrong value when power up pd with writemask (bsc#1051510).\n- soc/tegra: Fix bad of_node_put() in powergate init (bsc#1051510).\n- soc/tegra: flowctrl: Fix error handling (bsc#1051510).\n- soc: ti: ti_sci_pm_domains: Populate name for genpd (bsc#1051510).\n- soc: zte: Restrict SOC_ZTE to ARCH_ZX or COMPILE_TEST (bsc#1051510).\n- spi: bcm2835aux: ensure interrupts are enabled for shared handler (bsc#1051510).\n- spi/bcm63xx-hspi: Enable the clock before calling clk_get_rate() (bsc#1051510).\n- spi: bcm-qspi: Always read and set BSPI_MAST_N_BOOT_CTRL (bsc#1051510).\n- spi: bcm-qspi: Avoid setting MSPI_CDRAM_PCS for spi-nor master (bsc#1051510).\n- spi: cadence: Add usleep_range() for cdns_spi_fill_tx_fifo() (bsc#1051510).\n- spi: pxa2xx: Allow 64-bit DMA (bsc#1051510).\n- spi: pxa2xx: check clk_prepare_enable() return value (bsc#1051510).\n- sr: pass down correctly sized SCSI sense buffer (git-fixes).\n- staging: ks7010: Use constants from ieee80211_eid instead of literal ints (bsc#1051510).\n- staging: speakup: fix wraparound in uaccess length check (bsc#1051510).\n- supported.conf: add drivers/md/dm-writecache\n- sysrq : fix Show Regs call trace on ARM (bsc#1051510).\n- thermal: exynos: fix setting rising_threshold for Exynos5433 (bsc#1051510).\n- tty: Fix data race in tty_insert_flip_string_fixed_flag (bsc#1051510).\n- typec: tcpm: Fix a msecs vs jiffies bug (bsc#1100132).\n- udf: Detect incorrect directory size (bsc#1101891).\n- udf: Provide saner default for invalid uid / gid (bsc#1101890).\n- Update config files to add CONFIG_DM_WRITECACHE=m\n- Update patches.arch/KVM-PPC-Check-if-IOMMU-page-is-contained-in-the-pinn.patch (bsc#1077761, git-fixes, bsc#1103948, bsc#1103949).\n- usb: hub: Do not wait for connect state at resume for powered-off ports (bsc#1051510).\n- usbip: usbip_detach: Fix memory, udev context and udev leak (bsc#1051510).\n- vfs: add the sb_start_intwrite_trylock() helper (bsc#1101841).\n- virtio_balloon: fix another race between migration and ballooning (bsc#1051510).\n- wlcore: sdio: check for valid platform device data before suspend (bsc#1051510).\n- x86/apic: Ignore secondary threads if nosmt=force (bsc#1089343).\n- x86/CPU/AMD: Do not check CPUID max ext level before parsing SMP info (bsc#1089343).\n- x86/cpu/AMD: Evaluate smp_num_siblings early (bsc#1089343).\n- x86/CPU/AMD: Move TOPOEXT reenablement before reading smp_num_siblings (bsc#1089343).\n- x86/cpu/AMD: Remove the pointless detect_ht() call (bsc#1089343).\n- x86/cpu/common: Provide detect_ht_early() (bsc#1089343).\n- x86/cpu/intel: Evaluate smp_num_siblings early (bsc#1089343).\n- x86/cpu: Remove the pointless CPU printout (bsc#1089343).\n- x86/cpu/topology: Provide detect_extended_topology_early() (bsc#1089343).\n- x86/KVM/VMX: Add module argument for L1TF mitigation.\n- x86/smp: Provide topology_is_primary_thread() (bsc#1089343).\n- x86/topology: Provide topology_smt_supported() (bsc#1089343).\n- x86: Treat R_X86_64_PLT32 as R_X86_64_PC32 (binutils_2.31).\n- xfs: catch inode allocation state mismatch corruption (bsc#1104211).\n- xfs: prevent creating negative-sized file via INSERT_RANGE (bsc#1101833).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Module-Basesystem-15-2018-1614,SUSE-SLE-Module-Development-Tools-15-2018-1614,SUSE-SLE-Module-Legacy-15-2018-1614,SUSE-SLE-Product-HA-15-2018-1614,SUSE-SLE-Product-WE-15-2018-1614",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_2380-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:2380-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20182380-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:2380-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-August/004450.html"
},
{
"category": "self",
"summary": "SUSE Bug 1051510",
"url": "https://bugzilla.suse.com/1051510"
},
{
"category": "self",
"summary": "SUSE Bug 1051979",
"url": "https://bugzilla.suse.com/1051979"
},
{
"category": "self",
"summary": "SUSE Bug 1066110",
"url": "https://bugzilla.suse.com/1066110"
},
{
"category": "self",
"summary": "SUSE Bug 1077761",
"url": "https://bugzilla.suse.com/1077761"
},
{
"category": "self",
"summary": "SUSE Bug 1086274",
"url": "https://bugzilla.suse.com/1086274"
},
{
"category": "self",
"summary": "SUSE Bug 1086314",
"url": "https://bugzilla.suse.com/1086314"
},
{
"category": "self",
"summary": "SUSE Bug 1087081",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "self",
"summary": "SUSE Bug 1089343",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "self",
"summary": "SUSE Bug 1099811",
"url": "https://bugzilla.suse.com/1099811"
},
{
"category": "self",
"summary": "SUSE Bug 1099813",
"url": "https://bugzilla.suse.com/1099813"
},
{
"category": "self",
"summary": "SUSE Bug 1099844",
"url": "https://bugzilla.suse.com/1099844"
},
{
"category": "self",
"summary": "SUSE Bug 1099845",
"url": "https://bugzilla.suse.com/1099845"
},
{
"category": "self",
"summary": "SUSE Bug 1099846",
"url": "https://bugzilla.suse.com/1099846"
},
{
"category": "self",
"summary": "SUSE Bug 1099849",
"url": "https://bugzilla.suse.com/1099849"
},
{
"category": "self",
"summary": "SUSE Bug 1099858",
"url": "https://bugzilla.suse.com/1099858"
},
{
"category": "self",
"summary": "SUSE Bug 1099863",
"url": "https://bugzilla.suse.com/1099863"
},
{
"category": "self",
"summary": "SUSE Bug 1099864",
"url": "https://bugzilla.suse.com/1099864"
},
{
"category": "self",
"summary": "SUSE Bug 1100132",
"url": "https://bugzilla.suse.com/1100132"
},
{
"category": "self",
"summary": "SUSE Bug 1101116",
"url": "https://bugzilla.suse.com/1101116"
},
{
"category": "self",
"summary": "SUSE Bug 1101331",
"url": "https://bugzilla.suse.com/1101331"
},
{
"category": "self",
"summary": "SUSE Bug 1101669",
"url": "https://bugzilla.suse.com/1101669"
},
{
"category": "self",
"summary": "SUSE Bug 1101828",
"url": "https://bugzilla.suse.com/1101828"
},
{
"category": "self",
"summary": "SUSE Bug 1101832",
"url": "https://bugzilla.suse.com/1101832"
},
{
"category": "self",
"summary": "SUSE Bug 1101833",
"url": "https://bugzilla.suse.com/1101833"
},
{
"category": "self",
"summary": "SUSE Bug 1101837",
"url": "https://bugzilla.suse.com/1101837"
},
{
"category": "self",
"summary": "SUSE Bug 1101839",
"url": "https://bugzilla.suse.com/1101839"
},
{
"category": "self",
"summary": "SUSE Bug 1101841",
"url": "https://bugzilla.suse.com/1101841"
},
{
"category": "self",
"summary": "SUSE Bug 1101843",
"url": "https://bugzilla.suse.com/1101843"
},
{
"category": "self",
"summary": "SUSE Bug 1101844",
"url": "https://bugzilla.suse.com/1101844"
},
{
"category": "self",
"summary": "SUSE Bug 1101845",
"url": "https://bugzilla.suse.com/1101845"
},
{
"category": "self",
"summary": "SUSE Bug 1101847",
"url": "https://bugzilla.suse.com/1101847"
},
{
"category": "self",
"summary": "SUSE Bug 1101852",
"url": "https://bugzilla.suse.com/1101852"
},
{
"category": "self",
"summary": "SUSE Bug 1101853",
"url": "https://bugzilla.suse.com/1101853"
},
{
"category": "self",
"summary": "SUSE Bug 1101867",
"url": "https://bugzilla.suse.com/1101867"
},
{
"category": "self",
"summary": "SUSE Bug 1101872",
"url": "https://bugzilla.suse.com/1101872"
},
{
"category": "self",
"summary": "SUSE Bug 1101874",
"url": "https://bugzilla.suse.com/1101874"
},
{
"category": "self",
"summary": "SUSE Bug 1101875",
"url": "https://bugzilla.suse.com/1101875"
},
{
"category": "self",
"summary": "SUSE Bug 1101882",
"url": "https://bugzilla.suse.com/1101882"
},
{
"category": "self",
"summary": "SUSE Bug 1101883",
"url": "https://bugzilla.suse.com/1101883"
},
{
"category": "self",
"summary": "SUSE Bug 1101885",
"url": "https://bugzilla.suse.com/1101885"
},
{
"category": "self",
"summary": "SUSE Bug 1101887",
"url": "https://bugzilla.suse.com/1101887"
},
{
"category": "self",
"summary": "SUSE Bug 1101890",
"url": "https://bugzilla.suse.com/1101890"
},
{
"category": "self",
"summary": "SUSE Bug 1101891",
"url": "https://bugzilla.suse.com/1101891"
},
{
"category": "self",
"summary": "SUSE Bug 1101893",
"url": "https://bugzilla.suse.com/1101893"
},
{
"category": "self",
"summary": "SUSE Bug 1101895",
"url": "https://bugzilla.suse.com/1101895"
},
{
"category": "self",
"summary": "SUSE Bug 1101896",
"url": "https://bugzilla.suse.com/1101896"
},
{
"category": "self",
"summary": "SUSE Bug 1101900",
"url": "https://bugzilla.suse.com/1101900"
},
{
"category": "self",
"summary": "SUSE Bug 1101902",
"url": "https://bugzilla.suse.com/1101902"
},
{
"category": "self",
"summary": "SUSE Bug 1101903",
"url": "https://bugzilla.suse.com/1101903"
},
{
"category": "self",
"summary": "SUSE Bug 1102633",
"url": "https://bugzilla.suse.com/1102633"
},
{
"category": "self",
"summary": "SUSE Bug 1102658",
"url": "https://bugzilla.suse.com/1102658"
},
{
"category": "self",
"summary": "SUSE Bug 1103097",
"url": "https://bugzilla.suse.com/1103097"
},
{
"category": "self",
"summary": "SUSE Bug 1103356",
"url": "https://bugzilla.suse.com/1103356"
},
{
"category": "self",
"summary": "SUSE Bug 1103421",
"url": "https://bugzilla.suse.com/1103421"
},
{
"category": "self",
"summary": "SUSE Bug 1103517",
"url": "https://bugzilla.suse.com/1103517"
},
{
"category": "self",
"summary": "SUSE Bug 1103723",
"url": "https://bugzilla.suse.com/1103723"
},
{
"category": "self",
"summary": "SUSE Bug 1103724",
"url": "https://bugzilla.suse.com/1103724"
},
{
"category": "self",
"summary": "SUSE Bug 1103725",
"url": "https://bugzilla.suse.com/1103725"
},
{
"category": "self",
"summary": "SUSE Bug 1103726",
"url": "https://bugzilla.suse.com/1103726"
},
{
"category": "self",
"summary": "SUSE Bug 1103727",
"url": "https://bugzilla.suse.com/1103727"
},
{
"category": "self",
"summary": "SUSE Bug 1103728",
"url": "https://bugzilla.suse.com/1103728"
},
{
"category": "self",
"summary": "SUSE Bug 1103729",
"url": "https://bugzilla.suse.com/1103729"
},
{
"category": "self",
"summary": "SUSE Bug 1103730",
"url": "https://bugzilla.suse.com/1103730"
},
{
"category": "self",
"summary": "SUSE Bug 1103917",
"url": "https://bugzilla.suse.com/1103917"
},
{
"category": "self",
"summary": "SUSE Bug 1103920",
"url": "https://bugzilla.suse.com/1103920"
},
{
"category": "self",
"summary": "SUSE Bug 1103948",
"url": "https://bugzilla.suse.com/1103948"
},
{
"category": "self",
"summary": "SUSE Bug 1103949",
"url": "https://bugzilla.suse.com/1103949"
},
{
"category": "self",
"summary": "SUSE Bug 1104066",
"url": "https://bugzilla.suse.com/1104066"
},
{
"category": "self",
"summary": "SUSE Bug 1104111",
"url": "https://bugzilla.suse.com/1104111"
},
{
"category": "self",
"summary": "SUSE Bug 1104174",
"url": "https://bugzilla.suse.com/1104174"
},
{
"category": "self",
"summary": "SUSE Bug 1104211",
"url": "https://bugzilla.suse.com/1104211"
},
{
"category": "self",
"summary": "SUSE Bug 1104319",
"url": "https://bugzilla.suse.com/1104319"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10876 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10877 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10878 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10879 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10880 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10881 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10882 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-10883 page",
"url": "https://www.suse.com/security/cve/CVE-2018-10883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-3620 page",
"url": "https://www.suse.com/security/cve/CVE-2018-3620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-3646 page",
"url": "https://www.suse.com/security/cve/CVE-2018-3646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5391 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5391/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2018-08-16T12:30:10Z",
"generator": {
"date": "2018-08-16T12:30:10Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:2380-1",
"initial_release_date": "2018-08-16T12:30:10Z",
"revision_history": [
{
"date": "2018-08-16T12:30:10Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "kernel-default-4.12.14-25.13.1.aarch64",
"product_id": "kernel-default-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-25.13.1.aarch64",
"product": {
"name": "kernel-default-devel-4.12.14-25.13.1.aarch64",
"product_id": "kernel-default-devel-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-25.13.1.aarch64",
"product": {
"name": "kernel-obs-build-4.12.14-25.13.1.aarch64",
"product_id": "kernel-obs-build-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-25.13.1.aarch64",
"product": {
"name": "kernel-syms-4.12.14-25.13.1.aarch64",
"product_id": "kernel-syms-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"product": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"product_id": "kernel-vanilla-base-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"product_id": "reiserfs-kmp-default-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"product_id": "cluster-md-kmp-default-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "dlm-kmp-default-4.12.14-25.13.1.aarch64",
"product_id": "dlm-kmp-default-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"product_id": "gfs2-kmp-default-4.12.14-25.13.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"product_id": "ocfs2-kmp-default-4.12.14-25.13.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.12.14-25.13.1.noarch",
"product": {
"name": "kernel-devel-4.12.14-25.13.1.noarch",
"product_id": "kernel-devel-4.12.14-25.13.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.12.14-25.13.1.noarch",
"product": {
"name": "kernel-macros-4.12.14-25.13.1.noarch",
"product_id": "kernel-macros-4.12.14-25.13.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.12.14-25.13.1.noarch",
"product": {
"name": "kernel-docs-4.12.14-25.13.1.noarch",
"product_id": "kernel-docs-4.12.14-25.13.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.12.14-25.13.1.noarch",
"product": {
"name": "kernel-source-4.12.14-25.13.1.noarch",
"product_id": "kernel-source-4.12.14-25.13.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "kernel-default-4.12.14-25.13.1.ppc64le",
"product_id": "kernel-default-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-25.13.1.ppc64le",
"product": {
"name": "kernel-default-devel-4.12.14-25.13.1.ppc64le",
"product_id": "kernel-default-devel-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-25.13.1.ppc64le",
"product": {
"name": "kernel-obs-build-4.12.14-25.13.1.ppc64le",
"product_id": "kernel-obs-build-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-25.13.1.ppc64le",
"product": {
"name": "kernel-syms-4.12.14-25.13.1.ppc64le",
"product_id": "kernel-syms-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"product_id": "kernel-vanilla-base-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"product_id": "reiserfs-kmp-default-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"product_id": "cluster-md-kmp-default-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"product_id": "dlm-kmp-default-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"product_id": "gfs2-kmp-default-4.12.14-25.13.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"product_id": "ocfs2-kmp-default-4.12.14-25.13.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-default-4.12.14-25.13.1.s390x",
"product_id": "kernel-default-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-default-devel-4.12.14-25.13.1.s390x",
"product_id": "kernel-default-devel-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-default-man-4.12.14-25.13.1.s390x",
"product_id": "kernel-default-man-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-zfcpdump-4.12.14-25.13.1.s390x",
"product_id": "kernel-zfcpdump-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-obs-build-4.12.14-25.13.1.s390x",
"product_id": "kernel-obs-build-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-syms-4.12.14-25.13.1.s390x",
"product_id": "kernel-syms-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-25.13.1.s390x",
"product": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.s390x",
"product_id": "kernel-vanilla-base-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"product": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"product_id": "reiserfs-kmp-default-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"product": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"product_id": "cluster-md-kmp-default-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-25.13.1.s390x",
"product": {
"name": "dlm-kmp-default-4.12.14-25.13.1.s390x",
"product_id": "dlm-kmp-default-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-25.13.1.s390x",
"product": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.s390x",
"product_id": "gfs2-kmp-default-4.12.14-25.13.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"product": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"product_id": "ocfs2-kmp-default-4.12.14-25.13.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-default-4.12.14-25.13.1.x86_64",
"product_id": "kernel-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-default-devel-4.12.14-25.13.1.x86_64",
"product_id": "kernel-default-devel-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-obs-build-4.12.14-25.13.1.x86_64",
"product_id": "kernel-obs-build-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-syms-4.12.14-25.13.1.x86_64",
"product_id": "kernel-syms-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "lttng-modules-2.10.0-5.4.2.x86_64",
"product": {
"name": "lttng-modules-2.10.0-5.4.2.x86_64",
"product_id": "lttng-modules-2.10.0-5.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"product": {
"name": "lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"product_id": "lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"product_id": "reiserfs-kmp-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"product_id": "cluster-md-kmp-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "dlm-kmp-default-4.12.14-25.13.1.x86_64",
"product_id": "dlm-kmp-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"product_id": "gfs2-kmp-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"product_id": "ocfs2-kmp-default-4.12.14-25.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-25.13.1.x86_64",
"product": {
"name": "kernel-default-extra-4.12.14-25.13.1.x86_64",
"product_id": "kernel-default-extra-4.12.14-25.13.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 15",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 15",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15",
"product_id": "SUSE Linux Enterprise Workstation Extension 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "kernel-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "kernel-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64"
},
"product_reference": "kernel-default-devel-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le"
},
"product_reference": "kernel-default-devel-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-default-devel-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-default-devel-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-default-man-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.12.14-25.13.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch"
},
"product_reference": "kernel-devel-4.12.14-25.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.12.14-25.13.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch"
},
"product_reference": "kernel-macros-4.12.14-25.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-zfcpdump-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-4.12.14-25.13.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch"
},
"product_reference": "kernel-docs-4.12.14-25.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64"
},
"product_reference": "kernel-obs-build-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le"
},
"product_reference": "kernel-obs-build-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-obs-build-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-obs-build-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.12.14-25.13.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch"
},
"product_reference": "kernel-source-4.12.14-25.13.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64"
},
"product_reference": "kernel-syms-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le"
},
"product_reference": "kernel-syms-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-syms-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-syms-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64"
},
"product_reference": "kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le"
},
"product_reference": "kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x"
},
"product_reference": "kernel-vanilla-base-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-2.10.0-5.4.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64"
},
"product_reference": "lttng-modules-2.10.0-5.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64"
},
"product_reference": "lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x"
},
"product_reference": "reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15",
"product_id": "SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x"
},
"product_reference": "cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "dlm-kmp-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x"
},
"product_reference": "dlm-kmp-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "dlm-kmp-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x"
},
"product_reference": "gfs2-kmp-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x"
},
"product_reference": "ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
"product_id": "SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-4.12.14-25.13.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15",
"product_id": "SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
},
"product_reference": "kernel-default-extra-4.12.14-25.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-10876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10876"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10876",
"url": "https://www.suse.com/security/cve/CVE-2018-10876"
},
{
"category": "external",
"summary": "SUSE Bug 1099811 for CVE-2018-10876",
"url": "https://bugzilla.suse.com/1099811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10876"
},
{
"cve": "CVE-2018-10877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10877"
}
],
"notes": [
{
"category": "general",
"text": "Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10877",
"url": "https://www.suse.com/security/cve/CVE-2018-10877"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10877",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099846 for CVE-2018-10877",
"url": "https://bugzilla.suse.com/1099846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10877"
},
{
"cve": "CVE-2018-10878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10878"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10878",
"url": "https://www.suse.com/security/cve/CVE-2018-10878"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10878",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099813 for CVE-2018-10878",
"url": "https://bugzilla.suse.com/1099813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10878"
},
{
"cve": "CVE-2018-10879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10879"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10879",
"url": "https://www.suse.com/security/cve/CVE-2018-10879"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10879",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099844 for CVE-2018-10879",
"url": "https://bugzilla.suse.com/1099844"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10879"
},
{
"cve": "CVE-2018-10880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10880"
}
],
"notes": [
{
"category": "general",
"text": "Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10880",
"url": "https://www.suse.com/security/cve/CVE-2018-10880"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10880",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099845 for CVE-2018-10880",
"url": "https://bugzilla.suse.com/1099845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10880"
},
{
"cve": "CVE-2018-10881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10881"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10881",
"url": "https://www.suse.com/security/cve/CVE-2018-10881"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10881",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099864 for CVE-2018-10881",
"url": "https://bugzilla.suse.com/1099864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10881"
},
{
"cve": "CVE-2018-10882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10882"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10882",
"url": "https://www.suse.com/security/cve/CVE-2018-10882"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10882",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099849 for CVE-2018-10882",
"url": "https://bugzilla.suse.com/1099849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10882"
},
{
"cve": "CVE-2018-10883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-10883"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-10883",
"url": "https://www.suse.com/security/cve/CVE-2018-10883"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-10883",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1099863 for CVE-2018-10883",
"url": "https://bugzilla.suse.com/1099863"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-10883"
},
{
"cve": "CVE-2018-3620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-3620"
}
],
"notes": [
{
"category": "general",
"text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-3620",
"url": "https://www.suse.com/security/cve/CVE-2018-3620"
},
{
"category": "external",
"summary": "SUSE Bug 1087078 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1087078"
},
{
"category": "external",
"summary": "SUSE Bug 1087081 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "external",
"summary": "SUSE Bug 1089343 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "external",
"summary": "SUSE Bug 1090340 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1090340"
},
{
"category": "external",
"summary": "SUSE Bug 1091107 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1091107"
},
{
"category": "external",
"summary": "SUSE Bug 1099306 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1099306"
},
{
"category": "external",
"summary": "SUSE Bug 1104894 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1104894"
},
{
"category": "external",
"summary": "SUSE Bug 1136865 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1136865"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-3620",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-3620"
},
{
"cve": "CVE-2018-3646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-3646"
}
],
"notes": [
{
"category": "general",
"text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-3646",
"url": "https://www.suse.com/security/cve/CVE-2018-3646"
},
{
"category": "external",
"summary": "SUSE Bug 1087078 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1087078"
},
{
"category": "external",
"summary": "SUSE Bug 1087081 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1087081"
},
{
"category": "external",
"summary": "SUSE Bug 1089343 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1089343"
},
{
"category": "external",
"summary": "SUSE Bug 1091107 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1091107"
},
{
"category": "external",
"summary": "SUSE Bug 1099306 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1099306"
},
{
"category": "external",
"summary": "SUSE Bug 1104365 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1104365"
},
{
"category": "external",
"summary": "SUSE Bug 1104894 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1104894"
},
{
"category": "external",
"summary": "SUSE Bug 1106548 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1106548"
},
{
"category": "external",
"summary": "SUSE Bug 1113534 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1113534"
},
{
"category": "external",
"summary": "SUSE Bug 1136865 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1136865"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1178658"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2018-3646",
"url": "https://bugzilla.suse.com/1201877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "important"
}
],
"title": "CVE-2018-3646"
},
{
"cve": "CVE-2018-5391",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5391"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5391",
"url": "https://www.suse.com/security/cve/CVE-2018-5391"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1102340 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1102340"
},
{
"category": "external",
"summary": "SUSE Bug 1103097 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1103097"
},
{
"category": "external",
"summary": "SUSE Bug 1103098 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1103098"
},
{
"category": "external",
"summary": "SUSE Bug 1108654 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1108654"
},
{
"category": "external",
"summary": "SUSE Bug 1114071 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1114071"
},
{
"category": "external",
"summary": "SUSE Bug 1121102 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1121102"
},
{
"category": "external",
"summary": "SUSE Bug 1134140 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1134140"
},
{
"category": "external",
"summary": "SUSE Bug 1181460 for CVE-2018-5391",
"url": "https://bugzilla.suse.com/1181460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-devel-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-macros-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15:kernel-zfcpdump-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-docs-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-obs-build-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-source-4.12.14-25.13.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-syms-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15:kernel-vanilla-base-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-2.10.0-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15:lttng-modules-kmp-default-2.10.0_k4.12.14_25.13-5.4.2.x86_64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15:reiserfs-kmp-default-4.12.14-25.13.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15:kernel-default-extra-4.12.14-25.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-08-16T12:30:10Z",
"details": "moderate"
}
],
"title": "CVE-2018-5391"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…