vulnerability
SUSE: CVE-2018-10853: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Aug 16, 2018 | Aug 17, 2018 | Feb 4, 2022 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Aug 16, 2018
Added
Aug 17, 2018
Modified
Feb 4, 2022
Description
A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.
Solution(s)
suse-upgrade-kernel-azure-basesuse-upgrade-kernel-defaultsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-default-mansuse-upgrade-kernel-devel-azuresuse-upgrade-kernel-docssuse-upgrade-kernel-obs-buildsuse-upgrade-kernel-source-azure
References
- SUSE-SUSE-SU-2018:2341-1
- SUSE-SUSE-SU-2018:2342-1
- SUSE-SUSE-SU-2018:2345-1
- SUSE-SUSE-SU-2018:2346-1
- SUSE-SUSE-SU-2018:2347-1
- SUSE-SUSE-SU-2018:2348-1
- SUSE-SUSE-SU-2018:2349-1
- SUSE-SUSE-SU-2018:2350-1
- SUSE-SUSE-SU-2018:2351-1
- SUSE-SUSE-SU-2018:2352-1
- SUSE-SUSE-SU-2018:2353-1
- SUSE-SUSE-SU-2018:2354-1
- SUSE-SUSE-SU-2018:2355-1
- SUSE-SUSE-SU-2018:2356-1
- SUSE-SUSE-SU-2018:2358-1
- SUSE-SUSE-SU-2018:2359-1
- SUSE-SUSE-SU-2018:2363-1
- SUSE-SUSE-SU-2018:2364-1
- SUSE-SUSE-SU-2018:2367-1
- SUSE-SUSE-SU-2018:2368-1
- SUSE-SUSE-SU-2018:2369-1
- SUSE-SUSE-SU-2018:2387-1
- SUSE-SUSE-SU-2018:2389-1
- SUSE-SUSE-SU-2018:2391-1
- SUSE-SUSE-SU-2018:2413-1
- SUSE-SUSE-SU-2018:2414-1
- SUSE-SUSE-SU-2018:2416-1
- SUSE-SUSE-SU-2018:2450-1
- SUSE-SUSE-SU-2018:2472-1
- SUSE-SUSE-SU-2018:2474-1
- SUSE-SUSE-SU-2018:2538-1
- SUSE-SUSE-SU-2018:2539-1
- SUSE-SUSE-SU-2018:2678-1
- SUSE-SUSE-SU-2018:2684-1
- SUSE-SUSE-SU-2018:2908-1
- SUSE-SUSE-SU-2018:2908-2
- SUSE-SUSE-SU-2018:2933-1
- SUSE-SUSE-SU-2018:2935-1
- SUSE-SUSE-SU-2018:3083-1
- SUSE-SUSE-SU-2018:3084-1
- SUSE-SUSE-SU-2019:1245-1
- UBUNTU-USN-3777-1
- UBUNTU-USN-3777-2
- NVD-CVE-2018-10853
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.