Podatność CVE-2017-18344

Podatność CVE-2017-18344

Publikacja: 2018-07-26

Opis:

	Tytuł	Autor	Data
High	Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) (KASLR & SMEP Bypass) Arbitrary File Read	Andrey Konovalov	10.08.2018

Typ:

(Out-of-bounds Read)

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
2.1/10	2.9/10	3.9/10

Affected software
Redhat -> Mrg realtime
Redhat -> Enterprise linux desktop
Redhat -> Enterprise linux server
Redhat -> Enterprise linux server aus
Redhat -> Enterprise linux server eus
Redhat -> Enterprise linux server tus
Redhat -> Enterprise linux workstation
Redhat -> Virtualization
Linux -> Linux kernel
Canonical -> Ubuntu linux

http://www.securityfocus.com/bid/104909

http://www.securitytracker.com/id/1041414

https://access.redhat.com/errata/RHSA-2018:2948

https://access.redhat.com/errata/RHSA-2018:3083

https://access.redhat.com/errata/RHSA-2018:3096

https://access.redhat.com/errata/RHSA-2018:3459

https://access.redhat.com/errata/RHSA-2018:3540

https://access.redhat.com/errata/RHSA-2018:3586

https://access.redhat.com/errata/RHSA-2018:3590

https://access.redhat.com/errata/RHSA-2018:3591

https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.8

https://github.com/torvalds/linux/commit/cef31d9af908243421258f1df35a4a644604efbe

https://usn.ubuntu.com/3742-1/

https://usn.ubuntu.com/3742-2/

https://www.exploit-db.com/exploits/45175/