CVE-2018-10938
Vulnerability from cvelistv5
Published
2018-08-27 13:00
Modified
2024-08-05 07:54
Severity ?
EPSS score ?
Summary
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T07:54:35.481Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://seclists.org/oss-sec/2018/q3/179"
},
{
"name": "USN-3797-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3797-2/"
},
{
"name": "USN-3797-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3797-1/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"
},
{
"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"
},
{
"name": "1041569",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1041569"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"
},
{
"name": "105154",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/105154"
},
{
"name": "DSA-4308",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4308"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-08-27T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-23T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://seclists.org/oss-sec/2018/q3/179"
},
{
"name": "USN-3797-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3797-2/"
},
{
"name": "USN-3797-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3797-1/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"
},
{
"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"
},
{
"name": "1041569",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1041569"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"
},
{
"name": "105154",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/105154"
},
{
"name": "DSA-4308",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4308"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-10938",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS",
"refsource": "MLIST",
"url": "http://seclists.org/oss-sec/2018/q3/179"
},
{
"name": "USN-3797-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3797-2/"
},
{
"name": "USN-3797-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3797-1/"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149",
"refsource": "CONFIRM",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"
},
{
"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"
},
{
"name": "1041569",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1041569"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"
},
{
"name": "105154",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105154"
},
{
"name": "DSA-4308",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4308"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2018-10938",
"datePublished": "2018-08-27T13:00:00",
"dateReserved": "2018-05-09T00:00:00",
"dateUpdated": "2024-08-05T07:54:35.481Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2018-10938\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-08-27T13:29:00.353\",\"lastModified\":\"2024-11-21T03:42:21.050\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.\"},{\"lang\":\"es\",\"value\":\"Se ha detectado un error en el kernel de Linux presente desde v4.0-rc1 y hasta v4.13-rc4. Un paquete de red manipulado enviado de forma remota por un atacante podr\u00eda forzar al kernel a entrar en un bucle infinito en la funci\u00f3n cipso_v4_optptr() en net/ipv4/cipso_ipv4.c, lo que conduce a una denegaci\u00f3n de servicio (DoS). Cierta configuraci\u00f3n que no es por defecto en LSM (Linux Security Module) y NetLabel deber\u00eda configurarse en un sistema antes de que un atacante pueda aprovechar este error.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:C\",\"baseScore\":7.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-835\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7572A0F-20BA-4206-A3DC-87FF1E0A8999\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"41EB34C0-7E98-4275-9940-0FA832551A00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"56672BFD-BBD3-4A4D-9FB3-E8D2C2C8E97E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DA48AD3-82ED-4225-9A84-4067ED56F9D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"20A8368D-ABA0-4787-B4DC-0CC8F3A1F5A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE29E563-29A0-431E-A871-8E5DE0B5AE4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B676179-07A2-4C84-A1DE-650C7B20573E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.0:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC4645B3-E637-4B76-939F-ABAB12513DA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B98E44B8-1A5D-4BE3-9D5A-9D92B150C285\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD00F761-489D-40EF-A0E1-DA7EEB2EA2F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE3D49F8-C500-4DE3-A8AE-42BE4E40A648\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"83D5E725-6A98-413E-8375-78A153833F73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"866CAE02-6313-4BB8-B765-0A7EF1D46113\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D6F8973-3692-484E-944C-B7234CE5BB47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D237DD3-EFF7-4E26-901E-43DE555FBA63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AB2D00D-8F31-4003-900A-1BAA17397036\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.1:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"12AFF404-7575-42B4-BA34-1D9DFE61EC76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"395FA73A-DF17-40CE-AE42-DE849AB73E35\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AFE7ED9-FADE-4E73-90F6-CE7509701284\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"58FB19F0-507A-4281-844F-F3DC99E34AEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EC64B1B-3E04-4F49-B887-9C6B02EE7C87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C5DADE2-2A31-4F65-8A7E-224C02958A81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"130E1C2A-45DE-4C16-8FFA-06E9C9F7F175\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"78F0CC21-E28A-4B83-B65B-94AB9242F345\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"AED16DC6-6364-4B57-92A1-F14F347DADF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.2:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"03A4BCF1-5A7D-4E74-948F-134F0E57D73B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B8101D6-70F5-4F6E-B8D0-655F69B04E9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF5EA09F-BAA1-497B-A1AC-B35569795EEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E60E431-ABDD-4E2B-8D65-FCD79DA57B26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"18441725-D231-42AA-A157-76D87E5AFB61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"5135D006-1800-4B96-A95C-7FFCA5497085\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"58066E96-647A-4672-B6C6-B56CCD45DBD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"125ECB6A-6ED3-4FBF-AD02-47A69528D1A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.3:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"A729D0E4-EEA8-4497-B6B7-D9C83C4E9F97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D09D8FB-B3F3-4442-9C10-8B1B7B1AE78A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E425B7E4-0104-4CF8-A874-4CAF3273BCDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"C066AC79-4021-4414-A9F2-6B75C2D62773\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8FD5845-6A12-42D1-B59F-C3F8AED2EFEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B37BB89-774E-43E3-B676-BC19C14B1823\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"48D4FDF4-7ECF-4B68-87F9-58E3D8E6181B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DE43D99-452A-43FD-A459-B33D07B2CA7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF58DB97-7EA1-4528-AF9D-DAB0D66641DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.4:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD811782-D76C-4CC9-9F00-BFE7E258362F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"505BB1F7-7CF9-4B70-9A75-2D63AE439B48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"5011ED56-97F0-4754-9C98-B28B806DF6DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7FC0A28-90D9-4DF3-8A2A-49C3D4CB470A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D90B29E-F7B6-4EAB-83D2-1C339310D34D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"02A2E198-C184-459C-9B7C-8A9C74A6DCEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"F091733F-C9E6-4222-8EA0-9DDEC70EB129\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4736F08-176D-4F49-A59D-E8C0F6DDEC8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.5:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"80AD3822-AE03-412E-8E14-0DAD0BDCA028\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"273E9BE2-7913-4FA4-9E2E-41AF562FA7B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB920EEE-E2DE-4B39-B0B3-583FCE440B9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B97E93C8-FD2A-4713-BBD9-957295BBC3FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"87D9C8CA-54CC-450A-BD00-64008CD45453\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"08ECC36A-9E2C-479B-B438-C463317A58DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"65156E4E-B7C6-4C87-88F7-C04896F1535C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABD1B91B-4053-4063-B11B-2EDC4FC14F12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.6:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F3EC6CF-3386-45B6-A1FE-04C3FBC02EB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D50FE96C-7A38-486B-8B90-D3D29813A990\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"49A670AB-795C-429C-9F52-0794799C230C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7866D3-A8CE-42A1-A3E1-783DA7F3DB4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"4940B9A0-CF62-4B5F-9E69-91C1594B2107\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA6F4E31-42D4-4DAA-B9D8-0514F11AE778\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DEB1797-95E0-4344-91B3-8C3AEE42BDB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3E4C538-05B3-47AA-8464-087549C0D8F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.7:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"45FA346F-1039-4607-871B-B9F236A30C16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E12A4EF-B3CF-432B-B9FF-AEF80A5C6906\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DCA12A5-2DA5-4357-9C9A-D57CA605BAB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A2F7F5F-5684-4D0A-8AB9-22F739A4CA38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"35868503-6ECC-47B7-A31E-1030CDBD9AC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A6BD9A6-A3A8-4277-80ED-A169FD374D5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"22786B53-9B60-4708-9176-276DF0767E9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AAE030D-F039-4E93-BFA5-74456E2FC4A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA3C1AC7-9D6A-4C5D-8EC9-6F634224E889\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.8:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FCA9337-C4BE-41FA-841D-80FE81643EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27B10B33-5F64-4039-8351-694A7AB6E4E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"789DA749-1F1A-4DD9-9C94-A384002AE55D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"F525DDFE-705C-4838-802A-8D0D3A4A9FB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1685CD6-C7A0-46C9-B8D4-C472E46F70A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE21670A-9B31-4AED-93C4-171286BB2A56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"059DF035-9B5B-4F84-8EDD-34534ECAA579\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0288B1E-67AB-40F4-98C7-8C686510F664\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"73A5C6E1-051D-4FDC-8034-BE2896C639F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.9:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"F96570B2-47BE-4DEF-AAD8-909913366EA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DCB26E2-5F19-4F9C-9FF3-184EF7262D6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3D4D149-1B68-4BE4-866D-719C998504D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A50F996D-49DE-4EAF-A6ED-4EE56A2CFD95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23D17CA-66C9-477F-8668-9D314841785E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA5A26AC-E4BA-4BCC-BE0A-B3F31BA5084C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BE64B11-DBC1-4DA0-836C-32332216A650\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"09B6110F-7933-484D-AEAF-5D15FF38647E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"75694C52-0ADF-45EC-80AC-D973535B5CB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.10:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"29F29665-6B16-4D9F-A417-D0743395DF01\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB4B6A89-EA92-4229-8F03-473AD371CABB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"45227BEA-300E-4694-8ADE-D0FA7C560C83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F27DB1B-125C-416A-8DF1-80EE75E4F972\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"64F78CCF-F54B-4D1C-AFA6-DE4076C3A263\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A659506C-868E-4E87-B0D8-E901BC2E9BDC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"ACE2C8C3-F2AA-4A39-9D81-B0F8BB82B834\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D67BFFD0-1A52-4F5D-98DB-D94B58FD8D30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D996F38-22AC-4059-84FC-F7D69CE0CB9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.11:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"97EFF4F7-E5F9-4FAA-AD58-94A24501AD59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66BD76EB-0E70-4257-90E0-190AFCE21E02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE5098AB-40B1-4110-B2C7-186FD2B92AA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"256043A0-506E-41F9-8B2B-57C8ACC3236A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"06C33D36-B8A5-41CB-A742-7A1D91CCA18F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4E23BD8-16EB-4F8C-88C1-D5B9094D6D2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6FE7913-36A0-49E4-A568-0C72F9B5B9E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"7094F315-C1A3-4246-A85D-2409CC25DF65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.12:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"F236B926-4DDD-4548-ABC7-7EC105FAEFEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"00DC2A8C-1E8B-4799-BE91-771BB321246D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.13:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCBE5190-4EFC-4C4E-BE91-5711E04F3D26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.13:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB7715C0-AB55-458B-9242-8BEE9446F6D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.13:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA601A37-DCB0-45D4-AE9A-637221D488DA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/oss-sec/2018/q3/179\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105154\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041569\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3797-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3797-2/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4308\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/oss-sec/2018/q3/179\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105154\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3797-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3797-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4308\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.