vulnerability

Ubuntu: (Multiple Advisories) (CVE-2018-14678): Linux kernel vulnerabilities

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 28, 2018
Added
Apr 9, 2019
Modified
Aug 18, 2025

Description

An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. The xen_failsafe_callback entry point in arch/x86/entry/entry_64.S does not properly maintain RBX, which allows local users to cause a denial of service (uninitialized memory usage and system crash). Within Xen, 64-bit x86 PV Linux guest OS users can trigger a guest OS crash or possibly gain privileges.

Solutions

ubuntu-upgrade-linux-image-4-15-0-1010-oracleubuntu-upgrade-linux-image-4-15-0-1029-gcpubuntu-upgrade-linux-image-4-15-0-1031-kvmubuntu-upgrade-linux-image-4-15-0-1033-raspi2ubuntu-upgrade-linux-image-4-15-0-1035-awsubuntu-upgrade-linux-image-4-15-0-1035-oemubuntu-upgrade-linux-image-4-15-0-1041-azureubuntu-upgrade-linux-image-4-15-0-47-genericubuntu-upgrade-linux-image-4-15-0-47-generic-lpaeubuntu-upgrade-linux-image-4-15-0-47-lowlatencyubuntu-upgrade-linux-image-4-15-0-47-snapdragonubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragonubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-hwe-16-04

References

    Title
    NEW

    Explore Exposure Command

    Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

    Try it today