PRIOn knowledge basePRION:CVE-2018-1000199Design/Logic Flaw
The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable via local code execution and the ability to use ptrace. This vulnerability appears to have been fixed in git commit f67b15037a7a50c57f72e69a6d59941ad90a0f0f.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 12.04 | |
| ubuntu_linux | eq | 17.10 | |
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 7.0 | |
| debian_linux | eq | 9.0 | |
| linux_kernel | eq | 3.18 | |
| enterprise_linux | eq | 7.4 | |
| enterprise_linux | eq | 7.0 |
References
lists.opensuse.org/opensuse-security-announce/2020-06/msg00022.html
www.securitytracker.com/id/1040806
access.redhat.com/errata/RHSA-2018:1318
access.redhat.com/errata/RHSA-2018:1345
access.redhat.com/errata/RHSA-2018:1347
access.redhat.com/errata/RHSA-2018:1348
access.redhat.com/errata/RHSA-2018:1354
access.redhat.com/errata/RHSA-2018:1355
access.redhat.com/errata/RHSA-2018:1374
lists.debian.org/debian-lts-announce/2018/05/msg00000.html
lkml.org/lkml/2018/4/6/813
usn.ubuntu.com/3641-1/
usn.ubuntu.com/3641-2/
www.debian.org/security/2018/dsa-4187
www.debian.org/security/2018/dsa-4188
Related
