| Revision Date: | 2018-06-24 | Version: | 1 | | Title: | CVE-2018-12714 on Ubuntu 18.04 LTS (bionic) - medium. | | Description: | An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one line to have been read, thus making the N-1 index invalid. This allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via crafted perf_event_open and mmap system calls.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2018-12714
| | Platform(s): | Ubuntu 18.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 18.04 LTS (bionic) is installed. AND Package Information
NOT linux-image-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-51-generic-lpae package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1040-aws package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.18.0-1018-azure package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.15.0-1033-gcp package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-generic-lpae package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-snapdragon package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1035-kvm package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-extra-virtual package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-extra-virtual-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-extra-virtual-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-lpae package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-lpae-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-lpae-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-lowlatency-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-lowlatency-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-virtual package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-virtual-hwe-16.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-virtual-hwe-16.04-edge package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-aws package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-azure package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-gcp package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-extra-virtual-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-generic-lpae-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-lowlatency-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-snapdragon-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-virtual-hwe-18.04 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-kvm package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-oem package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-raspi2 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-snapdragon package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-unsigned-4.15.0-1039-oem package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1037-raspi2 package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-51-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-51-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-1019-azure package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1033-gcp package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-generic package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.18.0-21-lowlatency package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1039-oem package in bionic, while related to the CVE in some way, is not affected.
OR NOT linux-image-4.15.0-1054-snapdragon package in bionic, while related to the CVE in some way, is not affected.
|
|