Explore top 10 tips to secure your open-source projects now. Read More
×
The SUSE Linux Enterprise 12 SP4 kernel for Azure was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-18710: An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658 (bnc#1113751). - CVE-2018-18445: Faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandled 32-bit right shifts (bnc#1112372). - CVE-2018-18386: drivers/tty/n_tty.c allowed local attackers (who are able to access pseudo terminals) to hang/block further usage of any
#1051510 #1055120 #1061840 #1065600 #1066674
#1067906 #1076830 #1079524 #1083647 #1084760
#1084831 #1086196 #1091800 #1094825 #1095805
#1100132 #1101138 #1103356 #1103543 #1103925
#1104124 #1104731 #1105025 #1105428 #1105536
#1106110 #1106237 #1106240 #1106287 #1106359
#1106838 #1108377 #1108468 #1108870 #1109330
#1109739 #1109772 #1109784 #1109806 #1109818
#1109907 #1109911 #1109915 #1109919 #1109951
#1110006 #1111040 #1111076 #1111506 #1111806
#1111811 #1111819 #1111830 #1111834 #1111841
#1111870 #1111901 #1111904 #1111921 #1111928
#1111983 #1112170 #1112173 #1112208 #1112219
#1112221 #1112246 #1112372 #1112514 #1112554
#1112708 #1112710 #1112711 #1112712 #1112713
#1112731 #111...
Read the Full Advisory
Get the latest Linux and open source security news straight to your inbox.