Oval Definition:oval:com.ubuntu.bionic:def:20185750000
Revision Date:2018-01-26Version:1
Title:CVE-2018-5750 on Ubuntu 18.04 LTS (bionic) - low.
Description:The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call. Wang Qize discovered that an information disclosure vulnerability existed in the SMBus driver for ACPI Embedded Controllers in the Linux kernel. A local attacker could use this to expose sensitive information (kernel pointer addresses).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-5750
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'linux' package in bionic is not affected (note: '4.15.0-12.13').
  • OR NOT While related to the CVE in some way, the 'linux-aws' package in bionic is not affected (note: '4.15.0-1003.3').
  • OR NOT While related to the CVE in some way, the 'linux-azure' package in bionic is not affected (note: '4.15.0-1003.3').
  • OR NOT While related to the CVE in some way, the 'linux-gcp' package in bionic is not affected (note: '4.15.0-1003.3').
  • OR NOT While related to the CVE in some way, the 'linux-hwe' package in bionic is not affected.
  • OR The 'linux-hwe-edge' package in bionic is affected. An update containing the fix has been completed and is pending publication (note: '4.18.0-8.9~18.04.1').
  • OR NOT While related to the CVE in some way, the 'linux-kvm' package in bionic is not affected (note: '4.15.0-1002.2').
  • OR NOT While related to the CVE in some way, the 'linux-oem' package in bionic is not affected (note: '4.15.0-1002.3').
  • OR NOT While related to the CVE in some way, the 'linux-raspi2' package in bionic is not affected (note: '4.15.0-1006.7').
    • BACK