Oval Definition:oval:com.ubuntu.bionic:def:20172618000
Revision Date:2018-07-27Version:1
Title:CVE-2017-2618 on Ubuntu 18.04 LTS (bionic) - low.
Description:A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr files before 4.9.10. An empty (null) write to this file can crash the system by causing the system to attempt to access unmapped kernel memory. It was discovered that SELinux in the Linux kernel did not properly handle empty writes to /proc/pid/attr. A local attacker could use this to cause a denial of service (system crash).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-2618
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'linux' package in bionic is not affected (note: '4.13.0-16.19').
  • OR NOT While related to the CVE in some way, the 'linux-aws' package in bionic is not affected (note: '4.15.0-1001.1').
  • OR NOT While related to the CVE in some way, the 'linux-azure' package in bionic is not affected (note: '4.15.0-1002.2').
  • OR NOT While related to the CVE in some way, the 'linux-gcp' package in bionic is not affected (note: '4.15.0-1001.1').
  • OR NOT While related to the CVE in some way, the 'linux-hwe' package in bionic is not affected.
  • OR The 'linux-hwe-edge' package in bionic is affected. An update containing the fix has been completed and is pending publication (note: '4.18.0-8.9~18.04.1').
  • OR NOT While related to the CVE in some way, the 'linux-kvm' package in bionic is not affected (note: '4.15.0-1002.2').
  • OR NOT While related to the CVE in some way, the 'linux-oem' package in bionic is not affected (note: '4.15.0-1002.3').
  • OR NOT While related to the CVE in some way, the 'linux-raspi2' package in bionic is not affected (note: '4.13.0-1005.5').
    • BACK