SB2018022018 - Information disclosure in Linux kernel

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Security restrictions bypass (CVE-ID: CVE-2018-7273)

The vulnerability allows a local attacker to bypass security restrictions and obtain potentially sensitive information on the target system.

The weakness exists in the show_floppy function due to insufficient security restrictions. A local attacker can bypass security restrictions and gain access to potentially sensitive information.

2) Information disclosure (CVE-ID: CVE-2018-6412)

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists due to integer signedness error in the sbusfb_ioctl_helper function in drivers/video/fbdev/sbuslib.c. A remote attacker can use vector related to the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC commands to access arbitrary data.

Remediation

Install update from vendor's website.

References

• https://lkml.org/lkml/2018/2/20/669
• https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.134
• https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.104
• https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.45