Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2018-4233

Опубликовано: 28 сент. 2018
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2018-4233: Unbreakable Enterprise kernel security update (IMPORTANT)

kernel-uek [3.8.13-118.24.3]

  • exec: Limit arg stack to at most 75% of _STK_LIM (Kees Cook) [Orabug: 28710010] {CVE-2018-14634}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

dtrace-modules-3.8.13-118.24.3.el6uek

0.4.5-3.el6

kernel-uek

3.8.13-118.24.3.el6uek

kernel-uek-debug

3.8.13-118.24.3.el6uek

kernel-uek-debug-devel

3.8.13-118.24.3.el6uek

kernel-uek-devel

3.8.13-118.24.3.el6uek

kernel-uek-doc

3.8.13-118.24.3.el6uek

kernel-uek-firmware

3.8.13-118.24.3.el6uek

Oracle Linux 7

Oracle Linux x86_64

dtrace-modules-3.8.13-118.24.3.el7uek

0.4.5-3.el7

kernel-uek

3.8.13-118.24.3.el7uek

kernel-uek-debug

3.8.13-118.24.3.el7uek

kernel-uek-debug-devel

3.8.13-118.24.3.el7uek

kernel-uek-devel

3.8.13-118.24.3.el7uek

kernel-uek-doc

3.8.13-118.24.3.el7uek

kernel-uek-firmware

3.8.13-118.24.3.el7uek

Связанные CVE

CVE-2018-14634

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2018-14634

CVSS3: 7.8
ubuntu
больше 6 лет назад

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

redhat логотип

CVE-2018-14634

CVSS3: 7.8
redhat
больше 6 лет назад

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

nvd логотип

CVE-2018-14634

CVSS3: 7.8
nvd
больше 6 лет назад

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

debian логотип

CVE-2018-14634

CVSS3: 7.8
debian
больше 6 лет назад

An integer overflow flaw was found in the Linux kernel's create_elf_ta ...

github логотип

GHSA-4994-8w6g-9jvw

CVSS3: 7.8
github
около 3 лет назад

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.