Oracle Linux 5 : Unbreakable Enterprise kernel (ELSA-2018-4246)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4246 advisory. - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai...

K40523020: Linux kernel vulnerability CVE-2018-16658

Security Advisory Description An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdromioctldrivestatus in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1189)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.5.3 : kernel (EulerOS-SA-2019-1188)

According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used...

openSUSE Security Update : the Linux Kernel (openSUSE-2019-769)

The openSUSE Leap 15.0 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-14633: A security flaw was found in the chapservercomputemd5 function in the ISCSI target code in a way an authentication request from an ISCSI initiator is...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2980-1)

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-14617: Prevent NULL pointer dereference and panic in hfspluslookup when opening a file that is purportedly a hard link in an hfs+ filesystem that has malform...

EulerOS Virtualization 2.5.2 : kernel (EulerOS-SA-2018-1407)

According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdromioctldrivestatus in drivers/cdrom/cdrom.c cou...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4227)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4227 advisory. - nsfs: mark dentry with DCACHERCUACCESS Cong Wang Orabug: 28576290 CVE-2018-5873 - cdrom: Fix info leak/OOB read in cdromioctldrivestatus Scott...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:2776-1)

The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.155 to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-13093: Prevent NULL pointer dereference and panic in lookupslow on a NULL inode-iops pointer when doing pathwalks on a corrupted xfs image. Th...

CVE-2018-16658

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

CVE-2018-16658

An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdromioctldrivestatus in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940...

CVE-2018-16658

The CVE-2018-16658 entry concerns the Linux kernel prior to 4.18.6, where a vulnerability in cdrom_ioctl_drive_status() in drivers/cdrom/cdrom.c allows a local attacker to read kernel memory due to an unsafe cast from unsigned long to int that bypasses bounds checks. The issue is mitigated by upg...

CVE-2018-16658

An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdromioctldrivestatus in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940...