The Serial Attached SCSI (SAS) implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service (deadlock) by triggering certain error-handling code.
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0558f33c06bb910e2879e355192227a8e8f0219d
www.securityfocus.com/bid/103423
access.redhat.com/errata/RHSA-2018:3083
access.redhat.com/errata/RHSA-2018:3096
github.com/torvalds/linux/commit/0558f33c06bb910e2879e355192227a8e8f0219d
usn.ubuntu.com/4163-1/
usn.ubuntu.com/4163-2/
www.debian.org/security/2018/dsa-4187