CVE-2018-20509

Опубликовано: 30 апр. 2019

Источник: ubuntu

Приоритет: negligible

EPSS Низкий

CVSS2: 2.1

CVSS3: 5.5

Описание

The print_binder_ref_olocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref *desc *node" lines in a debugfs file.

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-10.11
cosmic	not-affected	4.15.0-20.21
devel	not-affected	5.0.0-13.14
disco	not-affected	4.18.0-10.11
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	4.15.0-10.11
esm-infra/xenial	not-affected	CONFIG_ANDROID_BINDER_IPC not enabled
precise/esm	ignored	end of life, was needs-triage
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1001.1
cosmic	not-affected	4.15.0-1007.7
devel	not-affected	5.0.0-1004.4
disco	not-affected	4.18.0-1002.3
esm-infra-legacy/trusty	ignored	was needed ESM criteria
esm-infra/bionic	not-affected	4.15.0-1001.1
esm-infra/xenial	not-affected	CONFIG_ANDROID_BINDER_IPC not enabled
precise/esm	DNE
trusty/esm	ignored	end of ESM support, was ignored [was needed ESM criteria]
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.15.0-1030.31~16.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	not-affected	4.15.0-1030.31~16.04.1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
cosmic	not-affected	4.15.0-1009.9
devel	not-affected	5.0.0-1004.4
disco	not-affected	4.18.0-1003.3
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
esm-infra/bionic	not-affected	4.15.0-1002.2
esm-infra/xenial	released	4.15.0-1013.13~16.04.2
precise/esm	DNE
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.2
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	released	4.15.0-1013.13~16.04.2

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1001.1
cosmic	not-affected	4.15.0-1006.6
devel	not-affected	5.0.0-1004.4
disco	not-affected	4.18.0-1002.3
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1001.1
esm-infra/xenial	released	4.15.0-1014.14~16.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-1004.5~18.04.1
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-1004.5~18.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1030.32
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1030.32
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.18.0-13.14~18.04.1
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.18.0-13.14~18.04.1
esm-infra/xenial	released	4.15.0-24.26~16.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	5.0.0-15.16~18.04.1
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	5.0.0-15.16~18.04.1
esm-infra/xenial	released	4.15.0-24.26~16.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.2
cosmic	not-affected	4.15.0-1008.8
devel	not-affected	5.0.0-1004.4
disco	not-affected	4.18.0-1003.3
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.2
esm-infra/xenial	not-affected	CONFIG_ANDROID_BINDER_IPC not enabled
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	ignored	end of life, was needs-triage
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	ignored	was needs-triage ESM criteria
precise/esm	DNE
trusty/esm	ignored	end of ESM support, was ignored [was needs-triage ESM criteria]
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1002.3
cosmic	not-affected	4.15.0-1004.5
devel	not-affected	4.15.0-1035.40
disco	not-affected	4.15.0-1021.24
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1002.3
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	ignored	end of standard support, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1007.9
cosmic	not-affected	4.15.0-1007.9
devel	not-affected	4.15.0-1011.13
disco	not-affected	4.15.0-1007.9
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected	4.15.0-1007.9
esm-infra/xenial	not-affected	4.15.0-1007.9~16.04.1
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	4.15.0-1006.7
cosmic	not-affected	4.15.0-1010.11
devel	not-affected	5.0.0-1006.6
disco	not-affected	4.18.0-1005.7
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	not-affected	CONFIG_ANDROID_BINDER_IPC not enabled

Показывать по

Релиз	Статус	Примечание
bionic	released	4.15.0-1053.57
cosmic	DNE
devel	not-affected	5.0.0-1010.10
disco	not-affected	5.0.0-1010.10
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty/esm	DNE
upstream	released	4.14~rc1
xenial	not-affected	CONFIG_ANDROID_BINDER_IPC not enabled

Показывать по

Ссылки на источники

EPSS

Процентиль: 18%

0.00057

Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-20509

CVSS3: 3.3

redhat

почти 7 лет назад

CVE-2018-20509

CVSS3: 5.5

nvd

почти 7 лет назад

CVE-2018-20509

CVSS3: 5.5

debian

почти 7 лет назад

The print_binder_ref_olocked function in drivers/android/binder.c in t ...

GHSA-v57m-pc28-vp22

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 18%

0.00057

Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

CVE-2018-20509

Описание

Пакет linux

Пакет linux-aws

Пакет linux-aws-hwe

Пакет linux-azure

Пакет linux-azure-edge

Пакет linux-euclid

Пакет linux-flo

Пакет linux-gcp

Пакет linux-gcp-edge

Пакет linux-gke

Пакет linux-gke-4.15

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-kvm

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-oem

Пакет linux-oracle

Пакет linux-raspi2

Пакет linux-snapdragon

Ссылки на источники

Связанные уязвимости