vulnerability
SUSE: CVE-2018-5332: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Jan 11, 2018 | Feb 9, 2018 | Feb 4, 2022 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Jan 11, 2018
Added
Feb 9, 2018
Modified
Feb 4, 2022
Description
In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).
Solution(s)
suse-upgrade-kernel-azure-basesuse-upgrade-kernel-defaultsuse-upgrade-kernel-default-extrasuse-upgrade-kernel-default-mansuse-upgrade-kernel-devel-azuresuse-upgrade-kernel-docssuse-upgrade-kernel-obs-buildsuse-upgrade-kernel-source-azure
References
- SUSE-SUSE-SU-2018:0383-1
- SUSE-SUSE-SU-2018:0416-1
- SUSE-SUSE-SU-2018:0482-1
- SUSE-SUSE-SU-2018:0555-1
- SUSE-SUSE-SU-2018:0660-1
- SUSE-SUSE-SU-2018:0834-1
- SUSE-SUSE-SU-2018:0841-1
- SUSE-SUSE-SU-2018:0848-1
- SUSE-SUSE-SU-2018:0986-1
- UBUNTU-USN-3617-1
- UBUNTU-USN-3617-2
- UBUNTU-USN-3617-3
- UBUNTU-USN-3619-1
- UBUNTU-USN-3619-2
- UBUNTU-USN-3620-1
- UBUNTU-USN-3620-2
- UBUNTU-USN-3632-1
- DEBIAN-DSA-4187
- NVD-CVE-2018-5332
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.