Oval Definition:oval:com.ubuntu.cosmic:def:201814634000
Revision Date:2018-09-25Version:1
Title:CVE-2018-14634 on Ubuntu 18.10 (cosmic) - high.
Description:An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable. It was discovered that an integer overflow vulnerability existed in the Linux kernel when loading an executable to run. A local attacker could use this to gain administrative privileges.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-14634
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'linux' package in cosmic is not affected (note: '4.15.0-20.21').
  • OR NOT While related to the CVE in some way, the 'linux-aws' package in cosmic is not affected (note: '4.15.0-1007.7').
  • OR NOT While related to the CVE in some way, the 'linux-azure' package in cosmic is not affected (note: '4.15.0-1009.9').
  • OR NOT While related to the CVE in some way, the 'linux-gcp' package in cosmic is not affected (note: '4.15.0-1006.6').
  • OR NOT While related to the CVE in some way, the 'linux-kvm' package in cosmic is not affected (note: '4.15.0-1008.8').
  • OR NOT While related to the CVE in some way, the 'linux-oem' package in cosmic is not affected (note: '4.15.0-1004.5').
  • OR NOT While related to the CVE in some way, the 'linux-raspi2' package in cosmic is not affected (note: '4.15.0-1010.11').
  • BACK