vulnerability
SUSE: CVE-2018-13406: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Jul 6, 2018 | Jul 25, 2018 | Feb 4, 2022 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 6, 2018
Added
Jul 25, 2018
Modified
Feb 4, 2022
Description
An integer overflow in the uvesafb_setcmap function in drivers/video/fbdev/uvesafb.c in the Linux kernel before 4.17.4 could result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used.
Solution(s)
suse-upgrade-kernel-azure-basesuse-upgrade-kernel-defaultsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-default-mansuse-upgrade-kernel-devel-azuresuse-upgrade-kernel-docssuse-upgrade-kernel-obs-buildsuse-upgrade-kernel-source-azure
References
- SUSE-SUSE-SU-2018:2051-1
- SUSE-SUSE-SU-2018:2092-1
- SUSE-SUSE-SU-2018:2150-1
- SUSE-SUSE-SU-2018:2222-1
- SUSE-SUSE-SU-2018:2332-1
- SUSE-SUSE-SU-2018:2344-1
- SUSE-SUSE-SU-2018:2344-2
- SUSE-SUSE-SU-2018:2362-1
- SUSE-SUSE-SU-2018:2366-1
- SUSE-SUSE-SU-2018:2384-1
- SUSE-SUSE-SU-2018:2637-1
- UBUNTU-USN-3752-1
- UBUNTU-USN-3752-2
- UBUNTU-USN-3752-3
- UBUNTU-USN-3753-1
- UBUNTU-USN-3753-2
- UBUNTU-USN-3754-1
- NVD-CVE-2018-13406
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.