Mageia 6 MGASA-2018-0391 Critical Kernel Denial of Service Issues

mageia

September 22, 2018

This kernel update is based on the upstream 4.14.70 and adds additional fixes for the L1TF security issues

Summary

This kernel update is based on the upstream 4.14.70 and adds additional fixes for the L1TF security issues. It also fixes atleast the following security issues:
Linux kernel from versions 3.9 and up, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments (CVE-2018-5391, FragmentSmack).
A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel caused by fixes for CVE-2018-5391, which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an attacker can trigger this crash remotely, thus leading to a remote denial-of-service (CVE-2018-14641).
An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=23586

- https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.70

- https://www.cve.org/CVERecord?id=CVE-2018-5391

- https://www.cve.org/CVERecord?id=CVE-2018-14641

- https://www.cve.org/CVERecord?id=CVE-2018-17182

Topics Covered

security advisory denial of service update critical kernel Mageia L1TF

Resolution

SRPMS

- 6/core/kernel-4.14.70-2.mga6

- 6/core/kernel-userspace-headers-4.14.70-2.mga6

- 6/core/kmod-vboxadditions-5.2.18-6.mga6

- 6/core/kmod-virtualbox-5.2.18-6.mga6

- 6/core/kmod-xtables-addons-2.13-66.mga6

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 22 Sep 2018

URL: https://advisories.mageia.org/MGASA-2018-0391.html

Type: security

CVE: CVE-2018-5391, CVE-2018-14641, CVE-2018-17182

Topics Covered

security advisory denial of service update critical kernel Mageia L1TF

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia 6 MGASA-2018-0391 Critical Kernel Denial of Service Issues

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia 6 MGASA-2018-0391 Critical Kernel Denial of Service Issues

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!