Rapid7 Vulnerability & Exploit Database

Ubuntu: USN-4486-1 (CVE-2018-10323): Linux kernel vulnerability

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Ubuntu: USN-4486-1 (CVE-2018-10323): Linux kernel vulnerability

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:C)

Published

04/24/2018

Created

03/19/2019

Added

08/31/2018

Modified

03/22/2023

Description

The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.

Solution(s)

ubuntu-upgrade-linux-image-3-13-0-157-generic
ubuntu-upgrade-linux-image-3-13-0-157-generic-lpae
ubuntu-upgrade-linux-image-3-13-0-157-lowlatency
ubuntu-upgrade-linux-image-3-13-0-157-powerpc-e500
ubuntu-upgrade-linux-image-3-13-0-157-powerpc-e500mc
ubuntu-upgrade-linux-image-3-13-0-157-powerpc-smp
ubuntu-upgrade-linux-image-3-13-0-157-powerpc64-emb
ubuntu-upgrade-linux-image-3-13-0-157-powerpc64-smp
ubuntu-upgrade-linux-image-4-15-0-1020-aws
ubuntu-upgrade-linux-image-4-15-0-1020-kvm
ubuntu-upgrade-linux-image-4-15-0-1021-raspi2
ubuntu-upgrade-linux-image-4-15-0-33-generic
ubuntu-upgrade-linux-image-4-15-0-33-generic-lpae
ubuntu-upgrade-linux-image-4-15-0-33-lowlatency
ubuntu-upgrade-linux-image-4-15-0-33-snapdragon
ubuntu-upgrade-linux-image-4-4-0-1077-aws
ubuntu-upgrade-linux-image-4-4-0-1079-kvm
ubuntu-upgrade-linux-image-4-4-0-1113-aws
ubuntu-upgrade-linux-image-4-4-0-1138-raspi2
ubuntu-upgrade-linux-image-4-4-0-1142-snapdragon
ubuntu-upgrade-linux-image-4-4-0-189-generic
ubuntu-upgrade-linux-image-4-4-0-189-generic-lpae
ubuntu-upgrade-linux-image-4-4-0-189-lowlatency
ubuntu-upgrade-linux-image-4-4-0-189-powerpc-e500mc
ubuntu-upgrade-linux-image-4-4-0-189-powerpc-smp
ubuntu-upgrade-linux-image-4-4-0-189-powerpc64-emb
ubuntu-upgrade-linux-image-4-4-0-189-powerpc64-smp
ubuntu-upgrade-linux-image-aws
ubuntu-upgrade-linux-image-generic
ubuntu-upgrade-linux-image-generic-lpae
ubuntu-upgrade-linux-image-generic-lpae-lts-xenial
ubuntu-upgrade-linux-image-generic-lts-xenial
ubuntu-upgrade-linux-image-kvm
ubuntu-upgrade-linux-image-lowlatency
ubuntu-upgrade-linux-image-lowlatency-lts-xenial
ubuntu-upgrade-linux-image-powerpc-e500mc
ubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenial
ubuntu-upgrade-linux-image-powerpc-smp
ubuntu-upgrade-linux-image-powerpc-smp-lts-xenial
ubuntu-upgrade-linux-image-powerpc64-emb
ubuntu-upgrade-linux-image-powerpc64-emb-lts-xenial
ubuntu-upgrade-linux-image-powerpc64-smp
ubuntu-upgrade-linux-image-powerpc64-smp-lts-xenial
ubuntu-upgrade-linux-image-raspi2
ubuntu-upgrade-linux-image-snapdragon
ubuntu-upgrade-linux-image-virtual
ubuntu-upgrade-linux-image-virtual-lts-xenial

References

https://attackerkb.com/topics/cve-2018-10323
103959
CVE - 2018-10323
DSA-4188
CVE-2018-10323
USN-3752-1
USN-3752-2
USN-3752-3
USN-3754-1
USN-4486-1

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Ubuntu: USN-4486-1 (CVE-2018-10323): Linux kernel vulnerability

Ubuntu: USN-4486-1 (CVE-2018-10323): Linux kernel vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.