Oval Definition:oval:com.ubuntu.bionic:def:2018122330000000
Revision Date:2018-06-12Version:1
Title:CVE-2018-12233 on Ubuntu 18.04 LTS (bionic) - medium.
Description:In the ea_get function in fs/jfs/xattr.c in the Linux kernel through 4.17.1, a memory corruption bug in JFS can be triggered by calling setxattr twice with two different extended attribute names on the same file. This vulnerability can be triggered by an unprivileged user with the ability to create files and execute programs. A kmalloc call is incorrect, leading to slab-out-of-bounds in jfs_xattr. Shankara Pailoor discovered that the JFS filesystem implementation in the Linux kernel contained a buffer overflow when handling extended attributes. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-12233
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • linux package in bionic was vulnerable but has been fixed (note: '4.15.0-33.36').
  • OR linux-aws package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20').
  • OR linux-azure package in bionic was vulnerable but has been fixed (note: '4.15.0-1022.23').
  • OR linux-gcp package in bionic was vulnerable but has been fixed (note: '4.15.0-1018.19').
  • OR linux-kvm package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta package in bionic was vulnerable but has been fixed (note: '4.15.0-33.36').
  • OR linux-meta-aws package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta-azure package in bionic was vulnerable but has been fixed (note: '4.15.0-1022.23').
  • OR linux-meta-gcp package in bionic was vulnerable but has been fixed (note: '4.15.0-1018.19').
  • OR linux-meta-kvm package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta-oem package in bionic was vulnerable but has been fixed (note: '4.15.0-1017.20').
  • OR linux-meta-raspi2 package in bionic was vulnerable but has been fixed (note: '4.15.0-1021.23').
  • OR linux-oem package in bionic was vulnerable but has been fixed (note: '4.15.0-1017.20').
  • OR linux-raspi2 package in bionic was vulnerable but has been fixed (note: '4.15.0-1021.23').
  • OR linux-signed package in bionic was vulnerable but has been fixed (note: '4.15.0-33.36').
  • OR linux-signed-azure package in bionic was vulnerable but has been fixed (note: '4.15.0-1022.23').
  • OR linux-signed-gcp package in bionic was vulnerable but has been fixed (note: '4.15.0-1018.19').
  • OR linux-signed-oem package in bionic was vulnerable but has been fixed (note: '4.15.0-1017.20').
  • BACK