Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM3EB2D1CBDE6F39F65F1D781A1439298F76DA3A8C8C722E723825134FB37DDB9E
HistoryJun 27, 2019 - 8:40 a.m.

Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities

2019-06-2708:40:01
www.ibm.com
23

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

JSON

Summary

IBM QRadar Network Security is affected by Linux kernel vulnerabilities

Vulnerability Details

CVEID:CVE-2018-14646
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference in the __netlink_ns_capable() function in the net/netlink/af_netlink.c. By assigning a net namespace with a netnsid, a local attacker could exploit this vulnerability to cause a kernel panic.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/153296&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-14634
DESCRIPTION: Linux Kernel could allow a local authenticated attacker to gain elevated privileges on the system, caused by an integer overflow in the create_elf_tables function. By using a specially-crafted binary file, an attacker could exploit this vulnerability to obtain full root privileges.
CVSS Base Score: 7.8
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/150310&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2018-13405
DESCRIPTION: Linux Kernel could allow a local attacker to gain elevated privileges on the system, caused by a flaw in the fs/inode.c:inode_init_owner() function. An attacker could exploit this vulnerability to create files with an unintended group ownership.
CVSS Base Score: 4
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/146434&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

CVEID:CVE-2018-10883
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by an out-of-bounds write in the jbd2_journal_dirty_metadata() function. By mounting and operating on a specially crafted ext4 filesystem image, a local attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/147830&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-10881
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by an out-of-bound access in the ext4_get_group_info function. By mounting and operating on a specially crafted ext4 filesystem image, a local attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/147820&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-10879
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a use-after-free in the ext4_xattr_set_entry function. By renaming a file a specially crafted ext4 filesystem image, a local attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/147832&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-10878
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by an out-of-bounds write in the ext4 filesystem. By mounting and operating on a specially crafted ext4 filesystem image, a local attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/147833&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-7740
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a flaw in the resv_map_release function in mm/hugetlb.c. By using a specially-crafted application, a local attacker could exploit this vulnerability to cause the system to cause a denial of service.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/139974&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-5344
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a use-after-free in the drivers/block/loop.c. A local attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 4
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/137649&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2018-1094
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the ext4_fill_super function in fs/ext4/super.c. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 5.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/141198&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-1092
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the ext4_iget function in fs/ext4/inode.c. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerability to cause the system to crash.
CVSS Base Score: 5.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/141196&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)

CVEID:CVE-2017-18344
DESCRIPTION: Linux Kernel could allow a local attacker to obtain sensitive information, caused by an out-of-bounds memory read error in the sigevent->sigev_notify’ field of show_timer() function. An attacker could exploit this vulnerability to obtain kernel memory.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/147880&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2017-18208
DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a flaw in the madvise_willneed function in mm/madvise.c. By triggering use of MADVISE_WILLNEED for a DAX mapping, a local attacker could exploit this vulnerability to cause a denial of service.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/139764&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2017-10661
DESCRIPTION: Linux Kernel could allow a local attacker to gain elevated privileges on the system, caused by a race condition in fs/timerfd.c. An attacker could exploit this vulnerability to gain privileges or cause a denial of service.
CVSS Base Score: 5.9
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/130802&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

CVEID:CVE-2016-4913
DESCRIPTION: Linux Kernel could allow a local attacker to obtain sensitive information, caused by the improper handling of NM entries containing NUL characters by the get_rock_ridge_filename function in fs/isofs/rock.c. An attacker could exploit this vulnerability using a specially crafted isofs filesystem to read from kernel memory locations.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/113397&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2015-8830
DESCRIPTION: Linux Kernel could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the AIO interface. By applying to certain filesystems, socket or device types, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base Score: 7.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/111186&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Affected Products and Versions

IBM QRadar Network Security 5.4.0

IBM QRadar Network Security 5.5.0

Remediation/Fixes

Product VRMF Remediation/First Fix
IBM QRadar Network Security 5.4.0 Install Firmware 5.4.0.8 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.4.0.8 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.
IBM QRadar Network Security 5.5.0 Install Firmware 5.5.0.3 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.5.0.3 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.

Related

ibm 1
oraclelinux 7
nessus 61
centos 2
redhat 12
openvas 23
ubuntucve 10
virtuozzo 4
suse 2
ubuntu 2
cloudfoundry 1
veracode 10
redhatcve 11
prion 10
debiancve 10
cve 9
photon 3
altlinux 1
osv 2
mageia 1
exploitpack 3
f5 4
packetstorm 1
canvas 1
zdt 3
threatpost 1
thn 1
amazon 2
paloalto 1
ibm
ibm
Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM
2019-05-17 16:05:02
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2018-11-05 00:00:00
Unbreakable Enterprise kernel security update
2018-09-10 00:00:00
Unbreakable Enterprise kernel security update
2019-04-08 00:00:00
nessus
nessus
Scientific Linux Security Update : kernel on SL7.x x86_64 (20181030)
2018-11-27 00:00:00
RHEL 7 : kernel (RHSA-2018:3083)
2018-10-31 00:00:00
CentOS 7 : kernel (CESA-2018:3083)
2018-11-16 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2018-11-15 18:40:28
kernel, perf, python security update
2018-09-28 16:41:18
redhat
redhat
(RHSA-2018:3096) Important: kernel-rt security, bug fix, and enhancement update
2018-10-30 04:18:28
(RHSA-2018:3083) Important: kernel security, bug fix, and enhancement update
2018-10-30 04:16:59
(RHSA-2018:3591) Important: kernel security and bug fix update
2018-11-13 16:57:42
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1507)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1360)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1229)
2020-01-23 00:00:00
ubuntucve
ubuntucve
CVE-2018-10879
2018-07-26 00:00:00
CVE-2018-14646
2018-11-26 00:00:00
CVE-2018-7740
2018-03-07 00:00:00
virtuozzo
virtuozzo
Product update: Virtuozzo 7.0 Update 9 (7.0.9-534)
2019-03-05 00:00:00
Kernel security update: Virtuozzo ReadyKernel patch 67.0 for Virtuozzo 7.0.8 and 7.0.8 HF1
2018-11-30 00:00:00
Important kernel security update: CVE-2017-18344; Virtuozzo ReadyKernel patch 56.0 for all supported Virtuozzo 7.0 kernels
2018-08-06 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2018-08-17 12:20:07
Security update for the Linux Kernel (important)
2018-08-17 12:32:52
ubuntu
ubuntu
Linux kernel vulnerabilities
2018-08-24 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2018-08-24 00:00:00
cloudfoundry
cloudfoundry
USN-3753-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:27:25
Denial Of Service (DoS)
2019-01-15 09:25:40
Denial Of Service (DoS)
2019-05-16 03:18:30
redhatcve
redhatcve
CVE-2018-14646
2020-01-07 03:32:16
CVE-2017-18208
2018-03-05 12:49:06
CVE-2018-10883
2019-10-21 06:03:23
prion
prion
Null pointer dereference
2018-11-26 19:29:00
Out-of-bounds
2018-07-30 16:29:00
Code injection
2018-03-01 05:29:00
debiancve
debiancve
CVE-2018-14646
2018-11-26 19:29:00
CVE-2017-18208
2018-03-01 05:29:00
CVE-2018-7740
2018-03-07 08:29:00
cve
cve
CVE-2018-10881
2018-07-26 18:29:00
CVE-2018-14646
2018-11-26 19:29:00
CVE-2017-18208
2018-03-01 05:29:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0041
2018-05-03 00:00:00
Important Photon OS Security Update - PHSA-2018-0165
2018-07-16 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0188
2018-09-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package kernel-image-std-pae version 1:4.4.140-alt0.M80P.1
2018-07-16 00:00:00
osv
osv
CVE-2018-7740
2018-03-07 08:29:00
CVE-2017-18344
2018-07-26 19:29:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities
2018-07-25 11:24:17
exploitpack
exploitpack
Linux Kernel 4.14.7 (Ubuntu 16.04 CentOS 7) - (KASLR SMEP Bypass) Arbitrary File Read
2018-08-09 00:00:00
Linux kernel 4.10.15 - Race Condition Privilege Escalation
2017-12-15 00:00:00
Linux Kernel 2.6.x 3.10.x 4.14.x (RedHat Debian CentOS) (x64) - Mutagen Astronomy Local Privilege Escalation
2018-09-26 00:00:00
f5
f5
K07020416 : Linux kernel vulnerability CVE-2017-18344
2020-12-08 00:00:00
K94735334 : Linux kernel vulnerability CVE-2018-10883
2019-02-20 00:00:00
K04337834 : Linux kernel vulnerability CVE-2017-10661
2020-12-08 00:00:00
packetstorm
packetstorm
Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) Arbitrary File Read
2018-08-09 00:00:00
canvas
canvas
Immunity Canvas: SHOW_TIMER_LEAK
2018-07-26 19:29:00
zdt
zdt
Linux Kernel 4.14.7 ( Ubuntu 16.04 / CentOS 7) Arbitrary File Read Exploit
2018-08-09 00:00:00
Linux Kernel 2.6.x / 3.10.x / 4.14.x (x64) - Mutagen Astronomy Local Privilege Escalation Exploit
2018-10-02 00:00:00
Linux kernel < 4.10.15 - Race Condition Privilege Escalation Exploit
2017-12-18 00:00:00
threatpost
threatpost
Local-Privilege Escalation Flaw in Linux Kernel Allows Root Access
2018-09-27 16:00:20
thn
thn
New Linux Kernel Bug Affects Red Hat, CentOS, and Debian Distributions
2018-09-26 12:14:00
amazon
amazon
Important: kernel
2018-10-03 19:23:00
Important: kernel
2018-10-08 22:13:00
paloalto
paloalto
Privilege Escalation in PAN-OS
2019-03-20 21:20:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

JSON
Related for 3EB2D1CBDE6F39F65F1D781A1439298F76DA3A8C8C722E723825134FB37DDB9E
ibm1oraclelinux7nessus61centos2redhat12openvas23ubuntucve10virtuozzo4suse2ubuntu2cloudfoundry1veracode10redhatcve11prion10debiancve10cve9photon3altlinux1osv2mageia1exploitpack3f54packetstorm1canvas1zdt3threatpost1thn1amazon2paloalto1