CVE-2018-12178 CVE-2018-12180 CVE-2018-12181
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
edk2 (Debian) |
Fix Released
|
Unknown
|
|||
edk2 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
Trusty |
Confirmed
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
dann frazier | ||
Bionic |
Fix Released
|
Undecided
|
dann frazier | ||
Cosmic |
Fix Released
|
Undecided
|
dann frazier | ||
Disco |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
Security vulnerabilities.
[Test Case]
Regression tested only (boot Ubuntu from disk, PXE boot)
[Fix]
https:/
https:/
https:/
https:/
https:/
[Regression Risk]
Risks include breaking DNS is some circumstances, possibly breaking image processing, partition detection, and RAM disk usage. This is mitigated by these patches having been upstream for some time, having already shipped in Ubuntu 19.04, and requiring minimal backporting to the Ubuntu versions.
CVE References
Changed in edk2 (Ubuntu): | |
status: | New → Fix Released |
Changed in edk2 (Debian): | |
status: | Unknown → Fix Released |
description: | updated |
description: | updated |
Changed in edk2 (Ubuntu Cosmic): | |
status: | Confirmed → In Progress |
Changed in edk2 (Ubuntu Bionic): | |
status: | Confirmed → In Progress |
assignee: | nobody → dann frazier (dannf) |
Changed in edk2 (Ubuntu Cosmic): | |
assignee: | nobody → dann frazier (dannf) |
Changed in edk2 (Ubuntu Xenial): | |
status: | Confirmed → In Progress |
assignee: | nobody → dann frazier (dannf) |
Status changed to 'Confirmed' because the bug affects multiple users.