CVE-2018-18653

Опубликовано: 26 окт. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.2

CVSS3: 7.8

Описание

The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Secure Boot enabled, allows privileged local users to bypass intended Secure Boot restrictions and execute untrusted code by loading arbitrary kernel modules. This occurs because a modified kernel/module.c, in conjunction with certain configuration options, leads to mishandling of the result of signature verification.

Релиз	Статус	Примечание
bionic	not-affected	4.13.0-16.19
cosmic	released	4.18.0-12.13
devel	not-affected	4.19.0-12.13
esm-infra-legacy/trusty	not-affected	3.11.0-12.19
esm-infra/bionic	not-affected	4.13.0-16.19
esm-infra/xenial	not-affected	4.2.0-16.19
precise/esm	ignored	end of life, was needs-triage
trusty	not-affected	3.11.0-12.19
trusty/esm	not-affected	3.11.0-12.19
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1001.1
cosmic	released	4.18.0-1006.7
devel	not-affected	4.18.0-1006.7
esm-infra-legacy/trusty	not-affected	4.4.0-1002.2
esm-infra/bionic	not-affected	4.15.0-1001.1
esm-infra/xenial	not-affected	4.4.0-1001.10
precise/esm	DNE
trusty	not-affected	4.4.0-1002.2
trusty/esm	not-affected	4.4.0-1002.2
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.15.0-1030.31~16.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	not-affected	4.15.0-1030.31~16.04.1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
cosmic	released	4.18.0-1006.6
devel	not-affected	4.18.0-1006.6
esm-infra-legacy/trusty	not-affected	4.15.0-1023.24~14.04.1
esm-infra/bionic	not-affected	4.15.0-1002.2
esm-infra/xenial	not-affected	4.11.0-1009.9
precise/esm	DNE
trusty	not-affected	4.15.0-1023.24~14.04.1
trusty/esm	not-affected	4.15.0-1023.24~14.04.1
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-1006.6~18.04.1
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-1006.6~18.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	not-affected	4.13.0-1003.3

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1001.1
cosmic	released	4.18.0-1004.5
devel	not-affected	4.18.0-1004.5
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1001.1
esm-infra/xenial	not-affected	4.10.0-1004.4
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-1004.5~18.04.1
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-1004.5~18.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-13.14~18.04.1
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-13.14~18.04.1
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-13.14~18.04.1
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-13.14~18.04.1
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
cosmic	released	4.18.0-1005.5
devel	not-affected	4.18.0-1005.5
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.2
esm-infra/xenial	not-affected	4.4.0-1004.9
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
precise/esm	ignored	end of life, was needs-triage
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [end of standard support]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [end of standard support]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [end of standard support]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [end of standard support]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [end of standard support]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [end of standard support]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise/esm	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	2.6.12~rc2
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.3
cosmic	not-affected	4.15.0-1004.5
devel	not-affected	4.15.0-1021.24
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.3
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	ignored	end of standard support, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1007.9
cosmic	not-affected
devel	not-affected	4.15.0-1007.9
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1007.9
esm-infra/xenial	not-affected	4.15.0-1007.9~16.04.1
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.13.0-1005.5
cosmic	released	4.18.0-1007.9
devel	not-affected	4.18.0-1009.11
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	not-affected	4.2.0-1013.19

Показывать по

Релиз	Статус	Примечание
bionic	not-affected
cosmic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.6.12~rc2
xenial	not-affected	4.4.0-1012.12

Показывать по

Ссылки на источники

EPSS

Процентиль: 5%

0.00023

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2018-18653

CVSS3: 7.8

nvd

больше 7 лет назад

CVE-2018-18653

CVSS3: 7.8

debian

больше 7 лет назад

The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Se ...

GHSA-4669-vh4j-5743

CVSS3: 7.8

github

больше 3 лет назад

EPSS

Процентиль: 5%

0.00023

Низкий

7.2 High

CVSS2

7.8 High

CVSS3

CVE-2018-18653

Описание

Пакет linux

Пакет linux-aws

Пакет linux-aws-hwe

Пакет linux-azure

Пакет linux-azure-edge

Пакет linux-euclid

Пакет linux-flo

Пакет linux-gcp

Пакет linux-gcp-edge

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-kvm

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-oem

Пакет linux-oracle

Пакет linux-raspi2

Пакет linux-snapdragon

Ссылки на источники

Связанные уязвимости