vulnerability
CentOS Linux: CVE-2018-14634: Important: kernel security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Sep 26, 2018 | Oct 2, 2018 | May 25, 2023 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Sep 26, 2018
Added
Oct 2, 2018
Modified
May 25, 2023
Description
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
Solution(s)
centos-upgrade-kernelcentos-upgrade-kernel-rt
References
- BID-105407
- NVD-CVE-2018-14634
- REDHAT-RHSA-2018:2748
- REDHAT-RHSA-2018:2763
- REDHAT-RHSA-2018:2846
- REDHAT-RHSA-2018:2924
- REDHAT-RHSA-2018:2925
- REDHAT-RHSA-2018:2933
- REDHAT-RHSA-2018:3540
- REDHAT-RHSA-2018:3586
- REDHAT-RHSA-2018:3590
- REDHAT-RHSA-2018:3591
- REDHAT-RHSA-2018:3643
- UBUNTU-USN-3775-1
- UBUNTU-USN-3775-2
- UBUNTU-USN-3779-1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.