vulnerability

Ubuntu: (Multiple Advisories) (CVE-2018-14625): Linux kernel vulnerabilities

Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
2018-09-10
Added
2019-02-05
Modified
2025-01-28

Description

A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the AF_VSOCK protocol to gather a 4 byte information leak or possibly intercept or corrupt AF_VSOCK messages destined to other clients.

Solution(s)

ubuntu-upgrade-linux-image-4-15-0-1027-gcpubuntu-upgrade-linux-image-4-15-0-1029-kvmubuntu-upgrade-linux-image-4-15-0-1031-raspi2ubuntu-upgrade-linux-image-4-15-0-1032-awsubuntu-upgrade-linux-image-4-15-0-1033-oemubuntu-upgrade-linux-image-4-15-0-1037-azureubuntu-upgrade-linux-image-4-15-0-44-genericubuntu-upgrade-linux-image-4-15-0-44-generic-lpaeubuntu-upgrade-linux-image-4-15-0-44-lowlatencyubuntu-upgrade-linux-image-4-15-0-44-snapdragonubuntu-upgrade-linux-image-4-15-0-45-genericubuntu-upgrade-linux-image-4-15-0-45-generic-lpaeubuntu-upgrade-linux-image-4-15-0-45-lowlatencyubuntu-upgrade-linux-image-4-18-0-1006-gcpubuntu-upgrade-linux-image-4-18-0-1007-kvmubuntu-upgrade-linux-image-4-18-0-1008-awsubuntu-upgrade-linux-image-4-18-0-1008-azureubuntu-upgrade-linux-image-4-18-0-1009-raspi2ubuntu-upgrade-linux-image-4-18-0-14-genericubuntu-upgrade-linux-image-4-18-0-14-generic-lpaeubuntu-upgrade-linux-image-4-18-0-14-lowlatencyubuntu-upgrade-linux-image-4-18-0-14-snapdragonubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtual-hwe-16-04
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.