RHSA-2018:1319HighCVSS 7.8
Red Hat Security Advisory: kernel security and bug fix update
🔗 CVE IDs covered (8)
📋 Description
CVE-2017-5715 — hw: cpu: speculative execution branch target injection CVE-2017-5754 — hw: cpu: speculative execution permission faults handling CVE-2017-7645 — kernel: nfsd: Incorrect handling of long RPC replies CVE-2017-8824 — kernel: Use-after-free vulnerability in DCCP socket CVE-2017-13166 — kernel: v4l2: disabled memory access protection mechanism allowing privilege escalation CVE-2017-18017 — kernel: netfilter: use-after-free in tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c CVE-2017-1000410 — kernel: Stack information leak in the EFS element CVE-2018-8897 — Kernel: error in exception handling leads to DoS
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2018:1319
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://access.redhat.com/security/vulnerabilities/pop_ss
- externalhttps://access.redhat.com/articles/3431591
- externalhttps://access.redhat.com/security/cve/CVE-2017-5754
- externalhttps://access.redhat.com/security/vulnerabilities/speculativeexecution
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1443615
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1519160
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1519591
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1519781
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1531135
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1548412
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1567074
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1319.json