CVE 2018-14634
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
Related bugs and status
CVE-2018-14634 (Candidate) is related to these bugs:
Bug #1787281: errors when scanning partition table of corrupted AIX disk
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1787281 | errors when scanning partition table of corrupted AIX disk | linux (Ubuntu) | Medium | Fix Released | ||
1787281 | errors when scanning partition table of corrupted AIX disk | linux (Ubuntu Bionic) | Undecided | Fix Released | ||
1787281 | errors when scanning partition table of corrupted AIX disk | linux (Ubuntu Xenial) | Undecided | Fix Released | ||
1787281 | errors when scanning partition table of corrupted AIX disk | linux (Ubuntu Trusty) | Undecided | Fix Released |
Bug #1788563: L1TF mitigation not effective in some CPU and RAM combinations
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu) | High | Fix Released | ||
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu Cosmic) | High | Fix Released | ||
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu Trusty) | High | Fix Released | ||
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu Bionic) | High | Fix Released | ||
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu Xenial) | High | Fix Released | ||
1788563 | L1TF mitigation not effective in some CPU and RAM combinations | linux (Ubuntu Precise) | High | Fix Released |
Bug #1788817: BUG: soft lockup - CPU#0 stuck for 23s! [kworker/0:1:1119]
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1788817 | BUG: soft lockup - CPU#0 stuck for 23s! [kworker/0:1:1119] | linux (Ubuntu) | Medium | Invalid | ||
1788817 | BUG: soft lockup - CPU#0 stuck for 23s! [kworker/0:1:1119] | linux (Ubuntu Trusty) | Medium | Fix Released |
Bug #1789131: Probable regression with EXT3 file systems and CVE-2018-1093 patches
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1789131 | Probable regression with EXT3 file systems and CVE-2018-1093 patches | linux (Ubuntu) | Critical | Fix Released | ||
1789131 | Probable regression with EXT3 file systems and CVE-2018-1093 patches | linux (Ubuntu Trusty) | Critical | Fix Released |
Bug #1789215: i40e NIC not recognized
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1789215 | i40e NIC not recognized | linux (Ubuntu) | Undecided | Invalid | ||
1789215 | i40e NIC not recognized | linux (Ubuntu Trusty) | Undecided | Fix Released |
Bug #1791754: linux: 3.13.0-159.209 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1791754 | linux: 3.13.0-159.209 -proposed tracker | linux (Ubuntu) | Undecided | Invalid | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | linux (Ubuntu Trusty) | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Incomplete | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | In Progress | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Confirmed | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | In Progress | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1791754 | linux: 3.13.0-159.209 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Confirmed |
Bug #1799407: linux-euclid: 4.4.0-9029.31 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | linux-euclid (Ubuntu) | Undecided | Invalid | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | linux-euclid (Ubuntu Xenial) | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Invalid | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Invalid | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | New | ||
1799407 | linux-euclid: 4.4.0-9029.31 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Invalid |
See the
CVE page on Mitre.org
for more details.