| Revision Date: | 2022-09-02 | Version: | 1 |
| Title: | CVE-2018-7273 |
| Description: |
In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and use the addresses to find the locations of kernel code and data and bypass kernel security protections such as KASLR.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | Mitre CVE-2018-7273
SUSE CVE-2018-7273
|
| Platform(s): | SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Retail Branch Server 4.1
SUSE Manager Server 4.1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information
kernel-default is affected
OR kernel-source is affected
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
AND
kernel-default is not affected
OR kernel-source is not affected
OR Package Information
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND
kernel-default is not affected
OR kernel-default-devel is not affected
OR kernel-devel is not affected
OR kernel-macros is not affected
|
| Definition Synopsis |
| SUSE Linux Enterprise Micro 5.1 is installed
AND kernel-default is not affected
|