19 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-7492
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference was found in the net/rds/rdma.c rdsrdmamap function in the Linux kernel before 4.14.7 allowing local attackers to cause a system pani...
SUSE: Security Advisory (SUSE-SU-2018:1762-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1521)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2201)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1855-2)
The SUSE Linux Enterprise 12 SP2 LTSS kernel was updated receive various security and bugfixes. The following security bugs were fixed : CVE-2018-5848: In the function wmisetie, the length validation code did not handle unsigned integer overflow properly. As a result, a large value of the 'ielen'...
Unbreakable Enterprise kernel security update
2.6.39-400.302.2 - Revert 'Fix up non-directory creation in SGID directories' Brian Maly Orabug: 28781234 2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.25.1 - x86/spectrev2: Don't check microcode versions when running under hypervisors Konrad Rzeszutek Wilk Orabug: 27959785 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28552792 CVE-2018-7492 - cdrom: Fix info leak/OOB read in...
Unbreakable Enterprise kernel security update
2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730 CVE-2018-7566 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28539910...
SUSE SLES11 Security Update : kernel (SUSE-SU-2018:2366-1) (Foreshadow)
The SUSE Linux Enterprise 11 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-8405: An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could...
Security update for the Linux Kernel (important)
The openSUSE Leap 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13406: An integer overflow in the uvesafbsetcmap function could have result in local attackers being able to crash the kernel or potentially elevate privileges...
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1855-1)
The SUSE Linux Enterprise 12 SP2 LTSS kernel was updated receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-5848: In the function wmisetie, the length validation code did not handle unsigned integer overflow properly. As a result, a large value of the 'iele...
Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3677-2)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3677-2 advisory. USN-3677-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement H...
Ubuntu: Security Advisory (USN-3677-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-3677-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3677-1: Linux kernel vulnerabilities
It was discovered that the netfilter subsystem of the Linux kernel did not properly validate ebtables offsets. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-1068 Wen Xu discovered that the ext4 filesystem implementation in t...
USN-3674-1: Linux kernel vulnerabilities
It was discovered that the netfilter subsystem of the Linux kernel did not properly validate ebtables offsets. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-1068 It was discovered that a NULL pointer dereference existed in t...
[SECURITY] [DSA 4187-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4187-1 [email protected] https://www.debian.org/security/ Ben Hutchings May 01, 2018 https://www.debian.org/security/faq -...
CVE-2018-7492
A NULL pointer dereference was found in the net/rds/rdma.c rdsrdmamap function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDSGETMR and RDSGETMRFORDEST...
CVE-2018-7492
The CVE-2018-7492 entry affects the Linux kernel prior to 4.14.7, where a NULL pointer dereference in net/rds/rdma.c __rds_rdma_map() can be triggered by local attackers via RDS_GET_MR / RDS_GET_MR_FOR_DEST. This leads to a system panic and denial-of-service. Affected versions are exposed to loca...