Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-1467
HistoryNov 28, 2018 - 8:01 a.m.

Linux Kernel Aug 2017 - Sep 2018 Vulnerabilities

2018-11-2808:01:01
Symantec Security Response
28

0.954 High

EPSS

Percentile

99.4%

JSON

SUMMARY

Symantec Network Protection products that include a vulnerable version of the Linux kernel are susceptible to multiple vulnerabilities. A remote attacker, with access to the management interface, can obtain unauthorized read/write access to local files, cause denial of service, and possible execute arbitrary code.

AFFECTED PRODUCTS

Advanced Secure Gateway (ASG)

CVE |Supported Version(s)|Remediation
CVE-2018-5390 | 6.6 | Upgrade to later release with fixes.
6.7 | Upgrade to 6.7.4.8.
7.1 | Upgrade to later release with fixes.
7.2 | Not vulnerable, fixed

Content Analysis (CA)

CVE |Supported Version(s)|Remediation
CVE-2018-5391 | 1.3, 2.1, 2.2, 2.3 | Upgrade to later version with fixes.
2.4, 3.0 | Not available at this time
3.1 | Not vulnerable, fixed in 3.1.0.0.

Director

CVE |Supported Version(s)|Remediation
CVE-2017-18017, CVE-2018-5390,
CVE-2018-5391 | 6.1 | Upgrade to a version of MC with the fixes.

Malware Analysis (MA)

CVE |Supported Version(s)|Remediation
CVE-2018-5390, CVE-2018-5391 | 4.2 | Upgrade to a version of Content Analysis with fixes.

Mail Threat Defense (MTD)

CVE |Supported Version(s)|Remediation
CVE-2018-5391 | 1.1 | Upgrade to a version of CAS and SMG with the fixes.

Management Center (MC)

CVE |Supported Version(s)|Remediation
CVE-2018-5391 | 2.0 - 2.4 | Upgrade to later release with fixes.
3.0 and later | Not vulnerable, fixed in 3.0.1.1

PacketShaper (PS) S-Series

CVE |Supported Version(s)|Remediation
CVE-2018-5390, CVE-2018-5391 | 11.6, 11.9, 11.10 | A fix will not be provided. Allot Secure Services Gateway (SSG) is a replacement product for PS S-Series. Switch to a version of SSG with the vulnerability fixes.

PolicyCenter (PC) S-Series

CVE |Supported Version(s)|Remediation
CVE-2018-5390, CVE-2018-5391 | 1.1 | A fix will not be provided. Allot NetXplorer is a replacement product for PC S-Series. Switch to a version of NetXplorer with the vulnerability fixes.

ProxySG

CVE |Supported Version(s)|Remediation
CVE-2018-5390 | 6.5, 6.6 | Upgrade to later release with fixes.
6.7 | Upgrade to 6.7.4.8.
7.1 | Upgrade to later release with fixes.
7.2 | Not vulnerable, fixed in 7.2.0.1.

Reporter

CVE |Supported Version(s)|Remediation
CVE-2018-5391 | 9.5 | Not vulnerable
10.1, 10.2, 10.3, 10.4 | Upgrade to later release with fixes.
10.5 | Not vulnerable, fixed in 10.5.1.1.

Security Analytics

CVE |Supported Version(s)|Remediation
CVE-2018-5390, CVE-2018-5391 | 7.2, 7.3, 8.0 | Upgrade to later release with fixes.
8.1 | Not vulnerable, fixed in 8.1.1.

SSL Visibility (SSLV)

CVE |Supported Version(s)|Remediation
CVE-2018-5390 | 3.10, 3.11, 3.12, 5.0 | Upgrade to later release with fixes.
4.2, 4.3, 4.4 | Not vulnerable
4.5 | Not available at this time
5.2 | Not vulnerable, fixed in 5.2.1.1.
CVE-2018-5391 | 3.10, 3.11, 3.12, 4.2, 4.3, 4.4, 5.0 | Upgrade to later release with fixes.
4.5 | Not available at this time
5.2 | Not vulnerable, fixed in 5.2.1.1.

X-Series XOS

CVE |Supported Version(s)|Remediation
CVE-2018-5390, CVE-2018-5391 | 10.0, 11.0 | A fix will not be provided.

ADDITIONAL PRODUCT INFORMATION

The following products are not vulnerable:
AuthConnector
BCAAA
CacheFlow
Cloud Data Protection for ServiceNow
Cloud Data Protection for Oracle CRM On Demand
Cloud Data Protection Integration Server
Cloud Data Protection Communication Server General Auth Connector Login Application
HSM Agent for the Luna SP
IntelligenceCenter
IntelligenceCenter Data Collector PacketShaper PolicyCenter ProxyAV ProxyAV ConLog and ConLogXP **Unified Agent
Web Isolation
WSS Mobile Agent

**

ISSUES

CVE-2017-13715

Severity / CVSSv3 | Critical / 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) References| SecurityFocus: BID 100517 / NVD: CVE-2017-13715 Impact| Denial of service, code execution Description | A flaw in internal state initialization allows a remote attacker to send a crafted MPLS packet and cause denial of source through a system crash, or possibly execute arbitrary code.

CVE-2017-1000251

Severity / CVSSv3 | High / 8.8 (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) References| SecurityFocus: BID 100809 / NVD: CVE-2017-1000251 Impact| Code execution Description | A flaw in L2CAP configuration responses in the native Bluetooth stack allows a remote attacker to send crafted responses and execute arbitrary code.

CVE-2017-18017

Severity / CVSSv3 | Critical / 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) References| SecurityFocus: BID 102367 / NVD: CVE-2017-18017 Impact| Denial of service Description | A flaw in TCPMSS firewall target processing allows a remote attacker to send crafted packets and cause denial of service or unspecified other impact.

CVE-2018-5390 (SegmentSmack)

Severity / CVSSv3 | High / 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) References| SecurityFocus: BID 104976 / NVD: CVE-2018-5390 Impact| Denial of service Description | A flaw in TCP fragment reassembly allows a remote attacker to send crafted TCP fragments and cause denial of service through CPU exhaustion.

CVE-2018-5391 (FragmentSmack)

Severity / CVSSv3 | High / 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) References| SecurityFocus: BID 105108 / NVD: CVE-2018-5391 Impact| Denial of service Description | A flaw in IP fragment reassembly allows a remote attacker to send crafted IP fragments and cause denial of service.

CVE-2018-5703

Severity / CVSSv3 | Critical / 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) References| NVD: CVE-2018-5703 Impact| Denial of service Description | A flaw in the TLS implementation allows a remote attacker to send crafted packets and cause a system crash, resulting in denial of service.

CVE-2018-1000028

Severity / CVSSv3 | High / 7.4 (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N) References| NVD: CVE-2018-1000028 Impact| Security control bypass Description | A flaw in NFS access control allows a remote attacker to get unauthorized read/write access to local files.

CVE-2018-10938

Severity / CVSSv3 | Medium / 5.9 (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H) References| SecurityFocus: BID 105154 / NVD: CVE-2018-10938 Impact| Denial of service Description | A flaw in packet handling allows a remote attacker to send crafted packets and cause denial of service through an infinite loop.

CVE-2018-14641

Severity / CVSSv3 | Medium / 5.9 (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H) References| NVD: CVE-2018-14641 Impact| Denial of service Description | A flaw in IP fragment reassembly allows a remote attacker to send crafted IP fragments and cause denial of service.

REVISION

2021-07-20 A fix for SSLV 4.4 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2021-07-15 A fix for Security Analytics 7.2 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2021-06-07 A fix for SSLV 3.10, SSLV 3.12, and SSLV 5.0 will not be provided. Please upgrade to a later version with the vulnerability fixes. SSLV 5.2 is not vulnerable because a fix is available in 5.2.1.1.
2021-02-18 A fix for CA 2.3 and MC 2.4 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2020-11-30 MC 3.0 is not vulnerable because a fix is available in 3.0.1.1.
2020-11-19 A fix for MTD 1.1 will not be provided. Please upgrade to a version of CAS and SMG with the vulnerability fixes. A fix for SA 7.3 and 8.0 will not be provided. Please upgrade to a later version with the vulnerability fixes. A fix for XOS 9.7, 10.0, and 11.0 will not be provided. A fix for Director 6.1 will not be provided. Please upgrade to a version of MC with the vulnerability fixes. A fix for Reporter 10.4 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2020-11-12 Content Analysis 3.1 is not vulnerable because a fix is available in 3.1.0.0.
2020-08-19 A fix for MC 2.3 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2020-04-30 A fix will not be provided for ProxySG 6.5. Please upgrade to a later version with the vulnerability fixes.
2020-04-08 Content Analysis 3.0 is vulnerable to CVE-2018-5391. Reporter 10.5 is not vulnerable because a fix is available in 10.5.1.1. Security Analytics 8.1 is not vulnerable because a fix is available in 8.1.1. Fixes will not be provided for Management Center 2.2 and Reporter 10.3. Please upgrade to later versions with the vulnerability fixes.
2020-04-04 A fix for PacketShaper S-Series will not be provided. Allot Secure Services Gateway (SSG) is a replacement product for PacketShaper S-Series. Switch to a version of SSG with the vulnerability fixes. A fix for PolicyCenter S-Series will not be provided. Allot NetXplorer is a replacement product for PolicyCenter S-Series. Switch to a version of NetXplorer with the vulnerability fixes.
2020-01-28 A fix will not be provided for ASG 7.1 and ProxySG 7.1. Please upgrade to a later version with the vulnerability fix. ASG and ProxySG 7.2 are not vulnerable because fixes are available in 7.2.0.1 EA.
2020-01-19 A fix will not be provided for Malware Analysis. Please upgrade to a version of Content Analysis with the vulnerability fixes. PacketShaper and ProxyAV are not vulnerable.
2019-10-02 Web Isolation is not vulnerable.
2019-09-05 A fix for MC 2.1 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-08-30 Reporter 10.4 is vulnerable to CVE-2018-5390 and CVE-2018-5391.
2019-08-19 CA, MTD, MC, Reporter 10.x, and SSLV 4.2-4.4 are not vulnerable to CVE-2018-5390. SSLV 3.12 and 4.5 are vulnerable to CVE-2018-5390 and CVE-2018-5391. CA 2.4 is vulnerable to CVE-2018-5391.
2019-08-13 MC 2.2 and MC 2.3 are vulnerable to CVE-2018-5390 and CVE-2018-5391. A fix for MC 2.0 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-08-07 A fix for ASG 6.6 and ProxySG 6.6 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-08-06 A fix for Reporter 10.1 and 10.2 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-08-06 A fix for SSLV 4.3 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-07-25 It was previously reported that a fix for CVE-2018-5390 in ASG 6.7 is available in 6.7.4.141 EA. Further investigation has shown that ASG 6.7.4.141 EA is still vulnerable. A fix for CVE-2018-5390 in ASG 6.7 and ProxySG 6.7 is available in 6.7.4.8. ASG and ProxySG are not vulnerable to CVE-2018-5391.
2019-02-04 A fix for CA 1.3 and CA 2.2 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-01-18 SSLV 5.0 is vulnerable to CVE-2018-5390 and CVE-2018-5391. A fix for SSLV 3.11 and 4.2 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2019-01-14 Reporter 10.3 is vulnerable to CVE-2018-5390 and CVE-2018-5391.
2019-01-13 SSLV 3.x and 4.x are vulnerable to CVE-2018-5390 and CVE-2018-5391. A fix is not available at this time.
2019-01-11 A fix for CA 2.1 will not be provided. Please upgrade to a later version with the vulnerability fixes.
2018-11-28 initial public release

Related

ubuntucve 9
checkpoint_security 1
ics 1
openvas 29
mageia 1
nessus 49
redhat 17
osv 3
debian 1
prion 8
f5 7
cloudfoundry 1
cvelist 8
redhatcve 7
nvd 8
debiancve 7
cve 7
ubuntu 7
citrix 1
arista 1
virtuozzo 1
veracode 3
oraclelinux 5
archlinux 6
exploitpack 1
huawei 1
suse 6
centos 2
slackware 1
ubuntucve
ubuntucve
CVE-2018-14641
2018-09-18 00:00:00
CVE-2018-1000028
2018-02-09 00:00:00
CVE-2017-13715
2017-08-29 00:00:00
checkpoint_security
checkpoint_security
Check Point response to SegmentSmack (CVE-2018-5390) and FragmentSmack (CVE-2018-5391)
2018-08-15 04:43:24
ics
ics
Siemens RUGGEDCOM, SCALANCE, SIMATIC, SINEMA (Update B)
2020-09-08 12:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0391)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2864-1)
2021-04-19 00:00:00
Debian: Security Advisory (DLA-1466-1)
2018-08-14 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2018-09-22 22:23:51
nessus
nessus
Debian DLA-1466-1 : linux-4.9 security update
2018-08-16 00:00:00
RHEL 6 : kernel (RHSA-2018:2791)
2018-09-27 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2864-1)
2018-09-27 00:00:00
redhat
redhat
(RHSA-2018:2785) Important: kernel security and bug fix update
2018-09-25 19:35:35
(RHSA-2018:2791) Important: kernel security and bug fix update
2018-09-25 19:41:08
(RHSA-2018:2924) Important: kernel security and bug fix update
2018-10-16 13:03:55
osv
osv
linux-4.9 - security update
2018-08-13 00:00:00
CVE-2017-18017
2018-01-03 06:29:00
CVE-2017-1000251
2017-09-12 17:29:00
debian
debian
[SECURITY] [DLA 1466-1] linux-4.9 security update
2018-08-15 12:18:26
prion
prion
Improper access control
2018-02-09 23:29:00
Design/Logic Flaw
2017-08-29 01:35:00
Design/Logic Flaw
2018-01-16 09:29:00
f5
f5
K14051233 : Linux kernel vulnerability CVE-2017-13715
2017-10-09 00:00:00
K05087544 : Linux kernel vulnerability CVE-2018-1000028
2018-02-20 00:00:00
K35205264 : Linux kernel vulnerability CVE-2018-10938
2018-09-25 00:00:00
cloudfoundry
cloudfoundry
USN-3741-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-08-17 00:00:00
cvelist
cvelist
CVE-2018-1000028
2018-02-09 23:00:00
CVE-2017-13715
2017-08-28 20:00:00
CVE-2018-10938
2018-08-27 13:00:00
redhatcve
redhatcve
CVE-2018-1000028
2018-01-31 05:20:36
CVE-2018-10938
2020-01-21 15:34:45
CVE-2018-5703
2020-03-31 08:28:54
nvd
nvd
CVE-2017-13715
2017-08-29 01:35:13
CVE-2018-1000028
2018-02-09 23:29:00
CVE-2018-10938
2018-08-27 13:29:00
debiancve
debiancve
CVE-2017-13715
2017-08-29 01:35:13
CVE-2018-1000028
2018-02-09 23:29:00
CVE-2018-10938
2018-08-27 13:29:00
cve
cve
CVE-2017-13715
2017-08-29 01:35:13
CVE-2018-1000028
2018-02-09 23:29:00
CVE-2018-10938
2018-08-27 13:29:00
ubuntu
ubuntu
Linux kernel regressions
2018-08-17 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2018-08-14 00:00:00
Linux kernel vulnerabilities
2018-08-14 00:00:00
citrix
citrix
Citrix Security Advisory for TCP/IP Reassembly Resource Exhaustion
2020-11-09 09:09:01
arista
arista
Security Advisory 0034
2018-05-02 00:00:00
virtuozzo
virtuozzo
Kernel security update: CVE-2017-18017; Virtuozzo ReadyKernel patch 42.0 for Virtuozzo 7.0.4, 7.0.4 HF3, 7.0.5, 7.0.6, and 7.0.6 HF3
2018-01-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-03-27 04:35:00
Remote Code Execution (RCE)
2019-01-15 09:19:10
Denial Of Service (DoS)
2019-05-16 03:18:37
oraclelinux
oraclelinux
kernel security and bug fix update
2017-09-13 00:00:00
kernel security update
2017-09-12 00:00:00
Unbreakable Enterprise kernel security update
2017-09-19 00:00:00
archlinux
archlinux
[ASA-201709-9] linux: arbitrary code execution
2017-09-15 00:00:00
[ASA-201709-4] linux-hardened: arbitrary code execution
2017-09-13 00:00:00
[ASA-201709-8] linux-lts: arbitrary code execution
2017-09-14 00:00:00
exploitpack
exploitpack
Linux Kernel 4.13.1 - BlueTooth Buffer Overflow (PoC)
2017-09-21 00:00:00
huawei
huawei
Security Advisory - FragmentSmack Vulnerability in Linux Kernel
2019-01-23 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2017-09-21 21:16:32
Security update for the Linux Kernel (important)
2017-09-14 15:07:24
Security update for the Linux Kernel (important)
2017-09-18 18:10:04
centos
centos
kernel, perf, python security update
2017-09-12 23:15:02
kernel, perf, python security update
2017-09-13 21:20:33
slackware
slackware
[slackware-security] kernel
2017-09-15 20:17:20

0.954 High

EPSS

Percentile

99.4%

JSON
Related for SMNTC-1467
ubuntucve9checkpoint_security1ics1openvas29mageia1nessus49redhat17osv3debian1prion8f57cloudfoundry1cvelist8redhatcve7nvd8debiancve7cve7ubuntu7citrix1arista1virtuozzo1veracode3oraclelinux5archlinux6exploitpack1huawei1suse6centos2slackware1