SB2018101015 - Information disclosure in Linux kernel
Published: October 10, 2018 Updated: December 27, 2018
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Input validation error (CVE-ID: CVE-2018-14656)
The vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to improper input validation when a missing address check occurs in the callers of the show_opcodes() function. A local user can use a specially crafted application to trigger kernel memory to be dumped into the dmesg log.
2) Information disclosure (CVE-ID: CVE-2018-18710)
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The vulnerability exists in the cdrom_ioctl_select_disc function, as defined in the drivers/cdrom/cdrom.c source code file due to boundary error when processing of user-supplied input. A local attacker can access the system, execute an application that submits malicious input to read arbitrary kernel memory on the system, which could be used to conduct additional attacks.
3) Information disclosure (CVE-ID: CVE-2018-20511)
The vulnerability allows a local attacker to obtain potentially sensitive information.
The vulnerability exists due to an error in ipddp_ioctl function in drivers/net/appletalk/ipddp.c. A remote attacker can leverage CAP_NET_ADMIN to read the ipddp_route dev and next fields via an SIOCFINDIPDDPRT ioctl call.
Remediation
Install update from vendor's website.