Oval Definition:oval:com.ubuntu.cosmic:def:201893850000000
Revision Date:2018-11-06Version:1
Title:CVE-2018-9385 on Ubuntu 18.10 (cosmic) - low.
Description:In driver_override_store of bus.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-74128061 References: Upstream kernel.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-9385
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND Package Information
  • linux package in cosmic, is related to the CVE in some way and has been fixed (note: '4.17.0-6.7').
  • OR linux-aws package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1020.20').
  • OR linux-azure package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1023.24').
  • OR linux-gcp package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1018.19').
  • OR linux-kvm package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta package in cosmic, is related to the CVE in some way and has been fixed (note: '4.17.0-6.7').
  • OR linux-meta-aws package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta-azure package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1023.24').
  • OR linux-meta-gcp package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1018.19').
  • OR linux-meta-kvm package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1020.20').
  • OR linux-meta-oem package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1017.20').
  • OR linux-meta-raspi2 package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1021.23').
  • OR linux-oem package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1017.20').
  • OR linux-raspi2 package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1021.23').
  • OR linux-signed package in cosmic, is related to the CVE in some way and has been fixed (note: '4.17.0-6.7').
  • OR linux-signed-azure package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1023.24').
  • OR linux-signed-gcp package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1018.19').
  • OR linux-signed-oem package in cosmic, is related to the CVE in some way and has been fixed (note: '4.15.0-1017.20').
    • BACK