Oval Definition:oval:org.opensuse.security:def:201811506
Revision Date:2022-08-07Version:1
Title:CVE-2018-11506
Description:

The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2018-11506
SUSE CVE-2018-11506
Platform(s):SUSE CaaS Platform 4.0
SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.0
SUSE Manager Proxy 4.1
SUSE Manager Retail Branch Server 4.0
SUSE Manager Retail Branch Server 4.1
SUSE Manager Server 4.0
SUSE Manager Server 4.1
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-default-base is not affected
  • OR kernel-default-devel is not affected
  • OR kernel-default-kgraft is not affected
  • OR kernel-devel is not affected
  • OR kernel-macros is not affected
  • OR kernel-source is not affected
  • OR kernel-source-azure is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
  • OR Package Information
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-default-devel is not affected
  • OR kernel-devel is not affected
  • OR kernel-macros is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND kernel-source-azure is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND kernel-source-azure is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP2 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • OR SUSE Linux Enterprise Server 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Storage 7 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Server 4.1 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 is installed
  • OR SUSE Linux Enterprise Server 15 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND
  • kernel-default is affected
  • OR kernel-source is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND kernel-source-azure is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • OR SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • kernel-default is affected
  • OR kernel-default-base is affected
  • OR kernel-default-devel is affected
  • OR kernel-devel is affected
  • OR kernel-macros is affected
  • OR kernel-source is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.1 is installed
  • AND Package Information
  • kernel-default is not affected
  • OR kernel-rt is not affected
    • BACK